'[lxc-users] Map more than one group to a unprivileged container.'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       lxc-users
Subject:    [lxc-users] Map more than one group to a unprivileged container.
From:       Clément_Lecoq <clementlecoq1 () gmail ! com>
Date:       2017-10-02 22:12:06
Message-ID: CAE=g69+tESocNUG=+wCuqquOCNFqwsFfeiVfswqNq8sXPsdXLg () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


hi !
It's been 2 days i encounter a problem with lxc,
Im trying to bind 3 group between my host and my unprivileged container.
it work great with just one group but not with 2.

this is an extract from my config file:
lxc.id_map = u 0 296608 2100
lxc.id_map = u 2100 2100 1
lxc.id_map = u 2101 298709 63435

lxc.id_map = g 0 296608 2100
lxc.id_map = g 2100 2100 1
lxc.id_map = g 2101 298709 99
lxc.id_map = g 2200 2200 1
lxc.id_map = g 2201 298809 63335

the group i try to bound are 2100, 2200 and 2300

i had this error :
lxc-start 20171002215253.999 ERROR    lxc_start - start.c:lxc_spawn:1171 -
Failed to set up id mapping.

and this is my /etc/subgid :
administrateur:100000:65536
media:165536:65536
clement:231072:65536
emby:296608:65536
emby:2100:1
emby:2200:1
emby:2300:1

my container is running with emby the user emby
i seen many config example but i had never see one with more than one group
mapped

[Attachment #5 (text/html)]

<div dir="ltr">hi !<div>It&#39;s been 2 days i encounter a problem with \
lxc,</div><div>Im trying to bind 3 group between my host and my unprivileged \
container.</div><div>it work great with just one group but not with \
2.</div><div><br></div><div>this is an extract from my config \
file:</div><div><div>lxc.id_map = u 0 296608 2100</div><div>lxc.id_map = u 2100 2100 \
1</div><div>lxc.id_map = u 2101 298709 63435</div><div><br></div><div>lxc.id_map = g \
0 296608 2100</div><div>lxc.id_map = g 2100 2100 1</div><div>lxc.id_map = g 2101 \
298709 99</div><div>lxc.id_map = g 2200 2200 1</div><div>lxc.id_map = g 2201 298809 \
63335</div></div><div><br></div><div>the group i try to bound are 2100, 2200 and \
2300</div><div><br></div><div>i had this error :</div><div>lxc-start \
20171002215253.999 ERROR      lxc_start - start.c:lxc_spawn:1171 - Failed to set up \
id mapping.<br></div><div><br></div><div>and this is my /etc/subgid \
:</div><div><div>administrateur:100000:65536</div><div>media:165536:65536</div><div>cl \
ement:231072:65536</div><div>emby:296608:65536</div><div>emby:2100:1</div><div>emby:2200:1</div><div>emby:2300:1</div></div><div><br></div><div>my \
container is running with emby the user emby</div><div>i seen many config example but \
i had never see one with more than one group mapped</div><div><br></div></div>


[Attachment #6 (text/plain)]

_______________________________________________
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic