Re: [lxc-users] How to provide device access to lxc unprivileged containers ?

Hi Andrey, Thank you for your response. As you suggested, for block devices I can mount the device into container FS and can perform read/write on it. But I have the requirement to make char devices also (eg. HID card reader/ barcode reader) accessible to unprivileged containers. Added the

[lxc-users] Running snapd within LXC/LXD on a Debian host?

Hi, I found the following, excellent article online: https://blog.ubuntu.com/2016/02/16/running-snaps-in-lxd-containers And I'm currently trying to achieve the same on an LXD host running Debian Stretch and a Container running Ubuntu 18.04. The error I'm now getting within the container is

Re: [lxc-users] Nova-lxd plugin installation

Hi Alex, you are right, I installed stable/queens version (I haven't been sure about master branch compatibility) of nova-lxd via devstack using ZFS. Meanwhile, I tried to create a new storage for LXD with different names for LXD pool and ZFS pool, however, the problem was still there. But

[lxc-users] unable to start any container ("Permission denied - Failed to mount")

I'm not able to start any container today. # lxc start preprod-app Error: Failed to run: /snap/lxd/current/bin/lxd forkstart preprod-app /var/snap/lxd/common/lxd/containers /var/snap/lxd/common/lxd/logs/preprod-app/lxc.conf: Try `lxc info --show-log preprod-app` for more info # lxc info

[lxc-users] nova-lxd and Ceph storage

Dear all, I am testing Openstack nova-lxd with an installation via conjure-up (Ubuntu 16.04, LXD 3.5, juju 2.4.3-xenial-amd64, conjure-up 2.6.1). So far, I am able to to log into dashboard, create some instances, assign floating IP and so on. The problem I am facing now is that I cannot attach

Re: [lxc-users] Running snapd within LXC/LXD on a Debian host?

From what I vaguely remember from the last time I tried, you might need to either disable AppArmor (on the parent container?) or make it privileged. Or possibly both. Of course, this does mean you lose some of the security/isolation of containerisation. Bob -Original Message- From:

Re: [lxc-users] Running snapd within LXC/LXD on a Debian host?

No need for nesting or privileged, snapd works fine in a fully secure unprivileged container, so long as the kernel has support for unprivileged fuse. Make sure that: - Your distro kernel has unprivileged fuse enabled, I believe this would require a 4.18 kernel and may require some specific

Re: [lxc-users] unable to start any container ("Permission denied - Failed to mount")

On 09/24/2018 03:27 PM, Tomasz Chmielewski wrote: I'm not able to start any container today. # lxc start preprod-app Error: Failed to run: /snap/lxd/current/bin/lxd forkstart preprod-app /var/snap/lxd/common/lxd/containers /var/snap/lxd/common/lxd/logs/preprod-app/lxc.conf: Try `lxc info