Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Custom capabilities in LXD #1982

Closed
kirgene opened this issue May 2, 2016 · 5 comments
Closed

Custom capabilities in LXD #1982

kirgene opened this issue May 2, 2016 · 5 comments

Comments

@kirgene
Copy link

@kirgene kirgene commented May 2, 2016

Hello,

How can I define custom capabilities in LXD container?

@stgraber

This comment has been minimized.

Copy link
Member

@stgraber stgraber commented May 2, 2016

We don't offer an official direct way to configure those as we try to keep our API implementation agnostic and capabilities are very much Linux specific.

Also as we default to unprivileged containers, those aren't so relevant.

You can still mess with them through raw. lxc though.

lxc config set container-name raw.lxc=lxc.cap.drop=some-cap

@CarltonSemple

This comment has been minimized.

Copy link

@CarltonSemple CarltonSemple commented Jan 25, 2017

@stgraber is it possible to do this for multiple lxc rules?
i.e.
lxc config set container-name raw.lxc=lxc.cap.keep=some-cap raw.lxc=lxc.cap.keep=some-cap2

@stgraber

This comment has been minimized.

Copy link
Member

@stgraber stgraber commented Jan 25, 2017

(
cat << EOF
lxc.cap.keep=some-cap
lxc.cap.keep=some-cap2
EOF
) | lxc config set container-name raw.lxc -
@CarltonSemple

This comment has been minimized.

Copy link

@CarltonSemple CarltonSemple commented Jan 25, 2017

awesome, thanks

@pkrnjevic

This comment has been minimized.

Copy link

@pkrnjevic pkrnjevic commented May 25, 2018

@stgraber this seems to no longer work in Ubuntu 18.04.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
4 participants
You can’t perform that action at this time.