You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to lxc-...@lists.linuxcontainers.org
A discussion has come up about getting bubblewrap and LXC to cooperate.
One use case would be allowing Steam, which recently started launching games
in a bwrap container, to work in unprivileged LXC containers. (Flatpak can
already do this, but unfortunately, it doesn't serve the same needs that LXC
does.)
I think some perspective from LXC maintainers would be valuable there:
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to Forest, LXC development mailing-list
Responded to the issue on Github, basically this seems to all work
just fine in LXD when nesting is enabled.
This kind of thing cannot work inside a privileged container and to do
it with unprivileged LXC is definitely possible (that's what LXD does)
but requires quite a bit of care to get all pieces right.