[Bug 1543697] Re: Unprivileged nested Xenial container will not start inside a privileged Xenial container

Serge Hallyn 1543697 at bugs.launchpad.net
Mon Mar 7 21:30:49 UTC 2016


Quoting Christopher Townsend (christopher.townsend at canonical.com):
> I tried adding "lxc.include = /usr/share/lxc/config/nesting.conf" as I
> didn't know this existed.  However, it didn't help.
> 
> As you say, I can create unprivileged containers as user ubuntu, I just
> can't start them.  Are you able to start unprivileged containers as user
> ubuntu?  If so, how are you starting them?  I need to start them from

Yes.  I start them by ssh'ing in as user ubuntu and doing lxc-start.
Does that work for you?

> the host's shell, so I'm doing something like this:
> 
> $ sudo lxc-attach -n test-libertine -- sudo -u ubuntu -H lxc-start -n
> test

This may not be enough to trigger pam-cgfs to create cgroups for you,
so that may be the reason it fails.  What does

sudo lxc-attach -n test-libertine -- sudo -u ubuntu -H cat
/proc/self/cgroup

show?

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1543697

Title:
  Unprivileged nested Xenial container will not start inside a
  privileged Xenial container

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1543697/+subscriptions



More information about the Ubuntu-server-bugs mailing list