[lxc] unprivileged container not booting - rootfs fails mounting
{"kernel":"4.14.123","hostname":"to","system":"ARMv7 Processor rev 1 (v7l)","model":"Turris Omnia","board_name":"armada-385-turris-omnia","release":{"distribution":"TurrisOS","version":"4.0-beta2","revision":"ab3fd04","target":"mvebu/cortexa9","description":"TurrisOS 4.0-beta2 ab3fd04"}}
- installed are - lxc-unprivileged | shadow-newgidmap | shadow-newuidmap
- in absentia manually created /etc/subgid | /etc/subuid
- exec -
usermod --add-subuids 100000-165536 $USER && usermod --add-subgids 100000-165536 $USER
- exec -
lxc-checkconfig
lxc-checkconfig.txt - container ubuntu disco created
- added
lxc.idmap = u 0 100000 65536
|lxc.idmap = g 0 100000 65536
to container.conf
- exec -
lxc-start test -F -o /logs/lxc/test -l debug
log.txt -
dmesg
not reporting anything related to the issue - container boots with no issues if privileged
-
cat /proc/1/mounts
mounts.text - kernel conf config
stat /usr/lib/lxc/rootfs/
File: ‘/usr/lib/lxc/rootfs/’
Size: 12 Blocks: 0 IO Block: 4096 directory
Device: 10h/16d Inode: 31359 Links: 1
Access: (0711/drwx--x--x) Uid: ( 0/ root) Gid: ( 0/ root)
cat /proc/self/cgroup
11:debug:/
10:rdma:/
9:pids:/
8:net_cls:/
7:freezer:/
6:devices:/
5:memory:/
4:blkio:/
3:cpuacct:/
2:cpu:/
1:cpuset:/
ls -al /proc/sys/kernel/| grep unpriv
-rw-r--r-- 1 root root 0 Jun 5 12:58 unprivileged_bpf_disabled