Twas brillig at 23:04:58 02.04.2010 UTC+02 when daniel.lezc...@free.fr did gyre and gimble:
>> >> Here process drops root privileges, setuids to uid=103 and >> >> limits itself to 3 processes with this uid. Clone fails due to >> >> fact there are two processes with uid=103 running in another >> >> container. Is it a known limitation, or maybe this is already >> >> handled in newer kernels? (I use 2.6.32) >> >> SEH> Hmm, you'll need to unshare the user namespace. Try adding >> SEH> CLONE_NEWUSER to the list assigned to clone_flags at >> SEH> lxc/src/lxc/start.c line 353. >> >> I tried, and was hit by the following problem: >> >> [dotted...@vertex:~]255% sudo lxc-start -n cf >> lxc-start: Device or resource busy - could not unmount old rootfs >> lxc-start: failed to pivot_root to '/var/lib/lxc/cf/rootfs' >> lxc-start: failed to set rootfs for 'cf' >> lxc-start: failed to setup the container >> DL> Did you try with the git head ? Yeah, and after git fetch'ing and building again it works fine. Adding CLONE_NEWUSER to clone_flags definitely fixes the problem. -- http://fossarchy.blogspot.com/
pgpfytnCDxqwq.pgp
Description: PGP signature
------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev
_______________________________________________ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
