[lxc-users] Sharing abstract sockets inter-containers ?
Maxime Jourdan
raptorteak at gmail.com
Fri Mar 10 10:30:08 UTC 2017
Hello,
One of the contained processes on my system exposes its communication
interface via an abstract socket. This socket is of the AF_UNIX family,
with the particularity of being accessible via a name rather than a socket
file with a path. This socket obeys to the network namespace rules.
Problem is that I need a few other containers to be able to connect to this
socket. But at the same time, I require containers to have different
network namespaces...
Sharing regular AF_UNIX sockets was no big deal because I could just
bind-mount the socket path into the various containers. But these abstract,
pathless sockets are making it hard to share.
A temporary solution has been to "whitelist" this specific socket name
inside the kernel directly, right before the namespace equal check, but
that's an ugly workaround.
Any advice about elegantly sharing asbtract sockets between containers is
gladly welcome :).
Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20170310/0255f659/attachment.html>
More information about the lxc-users
mailing list