[Lxc-users] lxc-busybox template [features, fixes, future]
Daniel Lezcano
daniel.lezcano at free.fr
Mon Aug 1 11:40:58 UTC 2011
On 07/28/2011 04:16 PM, Charles Hewson wrote:
> I have been expirmenting with template for a while. Have hacked a
> little. And, need the group's input.
>
> Feature I have added - When busybox is not accessable or dynamicly
> linked on host get current stable binary from busybox.net. Debian (lenny
> & squeeze) Grml and others default to dynamic libraries. Some fail with
> current static busybox. With this feature in template it is not
> necessary to adjust $PATH on host to create a container.
>
> Fixed -
> only setup links for /lib64 & /usr/lib64 if they exist on host;
> update functions to include all in busybox stable v1.18.4;
> restrict devices container can impact in $NAME/config;
> add /sys & sysfs to rootfs tree;
> add tty's for lxc-console;
> others, this is a work in progress.
>
> Future - Should root have a default passwd of toor which is expired
> forcing change at first lxc-start? Should commands that affect host be
> removed from linkages (brctl, tunctl, etc.)? NOTE: this would not
> prevent container user from directly exec "$ /bin/busybox brctl". Will
> any of this impact the present usage of the template?
>
> I am currently testing on squeeze i686. Plan to post template/diff
> after testing on second hardware platform and more distros
Charles,
all these enhancements sound good to me. I will be glad to take your
patches.
Next week there is a lxc developer summit. I am planning to write an
email to this list in order to collect the different features we want to
add to lxc. I will add the different items you are proposing for
busybox if you are ok with that.
Thanks
-- Daniel
More information about the lxc-users
mailing list