[lxc-users] User Mode Linux within a Linux Container
Fajar A. Nugraha
list at fajar.net
Tue Jan 30 22:16:05 UTC 2018
On Wed, Jan 31, 2018 at 2:54 AM, Pablo Pessolani <ppessolani at hotmail.com> wrote:
> Does anybody has run User Mode Linux (UML) within a Linux Container?
>
> And several UMLs within several Containers? (one UML by Container)
>
> Is there any limitation so that this can not be done?
If you're doing this for research purposes, I say 'try it and report
the result'. I've had success running openvpn (which use tun/tap
adapter that UML also need) even inside unprivileged container, with
minor changes to the systemd unit to enable autostart. I've also run
virtualbox in privileged containers (although in this case IIRC I had
to disable/modify apparmor/seccomp/dropped capabilities, which would
make it undesirable for 'production' uses). My GUESS is that UML will
behave similar to openvpn (since it doesn't require any special kernel
module other than tun/tap).
If you're doing this for performance / security / privilege separation
purposes, I suggest don't do that. Possibly look into nested
containers instead.
--
Fajar
More information about the lxc-users
mailing list