There is the /dev/lxd interface which could be extended to allow such things, but we'd have to think through this very very closely to make this safe.
We absolutely do not want an unprivileged container to have access to an interface which will cause the host to expose any device it wants over to it as it could then request /dev/sda and wipe your physical disk :) As for detecting nesting, this is entirely guessed from /proc/self/uid_map and /proc/self/attr/current, there is currently no communication between the host LXD and the nested LXD. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1574158 Title: lxd config device add fails with nested containers To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1574158/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
