Re: [lxc-users] Questions about kernel version dependencies for unprivileged containers

2016-10-24 Thread Fajar A. Nugraha 
On Tue, Oct 25, 2016 at 8:49 AM, 飞颜  wrote:

> Dear Fajar,
>
> Thanks for your reply.
>
> userns introduce in "ttps://lwn.net/Articles/532593/
> " is completed in Linux 3.8, which is
> difference between 3.12 and 3.8 LXC dependencies.
>
>
Did you read the next line? "The remaining work consists of changes for XFS
and a number of other filesystems;" The easiest way to find out which
changes go to which version would be by reading the kernel changelog. My
guess is the additional changes was only completed in 3.12.

IMHO a more valid question would be "why would you need an older version"?
Even for an acient centos6, you can use kernel-ml from elrepo (currently at
4.8.4). Or use Oracle's uek (4.1).

-- 
Fajar
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

Re: [lxc-users] Questions about kernel version dependencies for unprivileged containers

2016-10-24 Thread 飞颜 
Dear Fajar,

Thanks for your reply.

userns introduce in "ttps://lwn.net/Articles/532593/
" is completed in Linux 3.8, which is
difference between 3.12 and 3.8 LXC dependencies.

Regards,
Yanfei

2016-10-24 16:36 GMT+08:00 Fajar A. Nugraha :

> On Mon, Oct 24, 2016 at 2:52 PM, 飞颜  wrote:
>
>> Dear all,
>>
>> Extra dependencies for unprivileged containers need Linux kernel
>> >= 3.12 , Seen in URL "https://linuxcontainers.org/lxc/getting-started/;,
>> "https://linuxcontainers.org/lxc/security/; and "
>> https://www.stgraber.org/2014/01/17/lxc-1-0-unprivileged-containers/; .
>>
>> If kernel version lower than 3.12, why can not use unprivileged
>> containers?
>>
>>
>
>
> Should be because of userns: https://lwn.net/Articles/532593/
>
> --
> Fajar
>
> ___
> lxc-users mailing list
> lxc-users@lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
>
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

Re: [lxc-users] LXC containers w/ static IPs work on some hosts, not on others

2016-10-24 Thread Pierce Ng 
On Thu, Oct 20, 2016 at 02:07:09PM -0400, Michael Peek wrote:
> I started out with lxd but ran into problems when I tried googling for
> instructions on how to assign a static IP address to a container. 

I set static IP for my LXD containers by configuring each container's
/etc/network/interfaces.d/50-cloud-init.cfg:

  auto lo
  iface lo inet loopback
  
  auto eth0
  iface eth0 inet static
address 10.x.x.x
netmask 255.255.255.0
network 10.x.x.x
broadcast 10.x.x.x
gateway 10.x.x.x
dns-nameservers 10.x.x.x
dns-search xxx.xxx

HTH.

Pierce
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

[lxc-users] Live migration from UEFI to BIOS host

2016-10-24 Thread McDonagh, Ed 
Dear experts

With lxd 2.0.5, I can now take stateful snapshots which I guess confirms 
closing of https://bugs.launchpad.net/ubuntu/+source/criu/+bug/1626100, though 
I haven't tested it thoroughly.

I now have the following error when trying to do a live migration from h2 (a 
UEFI booted host, I now discover) to h1 (a BIOS booted host):

error: migration restore failed
(00.008782) Warn  (cr-restore.c:1159): Set CLONE_PARENT | CLONE_NEWPID but it 
might cause restore problem,because not all kernels support such clone flags 
combinations!
(00.298284)  1: Error (mount.c:2406): mnt: Can't mount at 
./sys/firmware/efi/efivars: No such file or directory
(00.298292)  1: Error (mount.c:2555): mnt: Unable to statfs 
./sys/firmware/efi/efivars: No such file or directory
(00.314227) Error (cr-restore.c:1352): 5857 killed by signal 9
(00.358573) Error (cr-restore.c:2182): Restoring FAILED.

I am assuming the issue is that h1 does not have a /sys/firmware/efi folder.

Is it not possible to migrate in these circumstances?

Thanks in advance.

Ed

#
Attention:
This e-mail and any attachment is for authorised use by the intended
recipient(s) only. It may contain proprietary, confidential and/or
privileged information and should not be copied, disclosed, distributed,
retained or used by any other party. If you are not an intended recipient
please notify the sender immediately and delete this e-mail (including
attachments and copies). 

The statements and opinions expressed in this e-mail are those of the
author and do not necessarily reflect those of the Royal Marsden NHS
Foundation Trust. The Trust does not take any responsibility for the
statements and opinions of the author.

Website: http://www.royalmarsden.nhs.uk
#
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

Re: [lxc-users] Questions about kernel version dependencies for unprivileged containers

2016-10-24 Thread Fajar A. Nugraha 
On Mon, Oct 24, 2016 at 2:52 PM, 飞颜  wrote:

> Dear all,
>
> Extra dependencies for unprivileged containers need Linux kernel
> >= 3.12 , Seen in URL "https://linuxcontainers.org/lxc/getting-started/;,
> "https://linuxcontainers.org/lxc/security/; and "https://www.stgraber.org/
> 2014/01/17/lxc-1-0-unprivileged-containers/" .
>
> If kernel version lower than 3.12, why can not use unprivileged
> containers?
>
>


Should be because of userns: https://lwn.net/Articles/532593/

-- 
Fajar
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

[lxc-users] Questions about kernel version dependencies for unprivileged containers

2016-10-24 Thread 飞颜 
Dear all,

Extra dependencies for unprivileged containers need Linux kernel >=
3.12 , Seen in URL "https://linuxcontainers.org/lxc/getting-started/;, "
https://linuxcontainers.org/lxc/security/; and "
https://www.stgraber.org/2014/01/17/lxc-1-0-unprivileged-containers/; .

If kernel version lower than 3.12, why can not use unprivileged
containers?

Regards,
Yanfei
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users