[Lxc-users] Fuse inside container on Arch Linux

John lxc at jelmail.com
Sat Sep 17 08:15:06 UTC 2011 

Ok, I got to the bottom of this. Following on from an earlier post on 
this list I tried to harden my container template and got a little 
over-zealous: adding lxc.cap.drop for sys_admin prevents mounts.

On 16/09/11 13:47, John wrote:
> Hi, has anyone got Fuse working within a container, ideally on Arch
> Linux but guidance from anyone appreciated :)
>
> Firstly, I have an Arch Linux container that is a really old test
> container and many things have been added/removed on the fly over time.
> The container's a mess and I don't know for sure what's been installed
> on it. But, in this container, fuse works fine.
>
> I have a new container that I am trying to build in a controlled manner.
> It contains fuse on a base Arch Linux container. In this container fuse
> does not work.
>
> The error I get is "fusermount: mount failed: Operation not permitted".
>
> In both cases I am testing as root to avoid permissioning problems.
>
> Both the above containers are on the same host.
>
> I have the same lxc.conf arguments in both containers for fuse:
>
> lxc.cgroup.devices.allow = c 10:229 rwm
>
> I also added the below (but it made no difference, so not sure if needed):
>
> lxc.mount.entry = fusectl /srv/lxc/mycontainer/sys/fs/fuse/connections
> fusectl rw,relatime 0 0
>
> In the container, device node exists:
>
> # ls -l /dev/fuse
> crw-rw-rw- 1 root root 10, 229 Sep 16 13:23 /dev/fuse
>
> I expect i need to install something else, something that my older
> container has but I can't quite see. If anyone has this working and
> there is anything obvious missing from the above please let me know what
> I've missed...
>
> Thanks,
> John
>
>
>
> ------------------------------------------------------------------------------
> BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA
> http://p.sf.net/sfu/rim-devcon-copy2
> _______________________________________________
> Lxc-users mailing list
> Lxc-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lxc-users
>

More information about the lxc-users mailing list