[lxc-users] lxc-create using lxc.idmap?
Christian Brauner
christian at brauner.io
Mon Jul 16 13:31:56 UTC 2018
On Mon, Jul 16, 2018 at 08:24:09AM +0200, Harald Dunkel wrote:
> Hi folks,
>
> is there a way to tell lxc-create to support a custom(!) UID and
> GID map via lxc.idmap? Each container should get its own mapping.
>
> Problem behind this is that some containers may affect each other
> by exceeding the maximum number of threads. (Is this as expected?
> This is lxc 2.0.9.)
>
> Subuids/subgids are not an option. I would like to use something
> like
>
> % su -
> # lxc-create -t debian \
> -o "lxc.idmap = u 0 100000 65536" \
> -o "lxc.idmap = g 0 100000 65536" ...
>
> to set the mapping right from the start, without touching /etc/lxc/\
> default.conf.
>
> Do you think this could be possible?
Well, lxc-create could do what lxc-start is doing and grow an -s option.
The code that would need to be copied is in lxc_start.c.
Just from the top of my head without checking whether there are more
changes outside of tools/lxc_create.c required.
Christian
>
>
> Regards
> Harri
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
More information about the lxc-users
mailing list