[lxc-users] Trying to set elevated privileges for non-root user in privileged container

Mark Paterson markpaters at gmail.com
Wed Mar 20 19:00:27 UTC 2019


Hi all!
I am trying to run as a non-root user an application in a privileged
container that requires setting elevated thread priority. From within the
container, elevating priority works if I use sudo, so I can tell that the
container is not dropping capabilities. The non-root user is set up in
/etc/security/limits.d for rtprio, and is mapped via raw.idmap to a host
user with equivalent privileges that work on the host side.

However, if I try in the container to chrt a process to a higher priority,
I get "Operation not permitted." What am I missing?

Thanks!

Mark
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20190320/b3201e37/attachment.html>


More information about the lxc-users mailing list