[lxc-users] Autostart Unpriviledged Containers
Xavier Gendre
gendre.reivax at gmail.com
Tue Oct 6 05:14:34 UTC 2015
Le 06/10/2015 06:03, Paul Jones a écrit :
> Hi.
>
> I'm using Debian Stretch. And I would like to use unpriviledged containers.
>
> It seems by default, there is one cgroup owned by root. In order to
> start an unpriviledged container I need to create a new cgroup, chown it
> to the unpriviledged user and then move the current tty process into
> that cgroup. Then start the container from there.
>
> If this is the case, how will it be possible to autostart containers on
> boot?
>
> Or am I going about this all wrong?
Hi Paul,
to start an unprivileged container on boot, you run some steps similar
to what you describe but in a script that you call through a systemd
service.
Here are the step i do:
- set clone_children to 1
- create a dedicated cgroup and give it to my user
- start the container
Xavier
More information about the lxc-users
mailing list