Lab 3.2 - LXC
I am trying to do the lxc lab and the command is not giving me the list of unprivileged containers. Similar problem to this thread . I am using a GCP instance, configured to the specifiaction of Lab 1.1.
lxc-create -t download -n unpriv-cont-userlxc-create: unpriv-cont-user: conf.c: chown_mapped_root: 3226 lxc-usernsexec failed: No such file or directory - Failed to open tt lxc-create: unpriv-cont-user: tools/lxc_create.c: main: 327 Failed to create container unpriv-cont-user
cat /etc/subuidlxd:100000:65536 root:100000:65536 ubuntu:165536:65536 mktbilling:231072:65536
cat /etc/subgidlxd:100000:65536 root:100000:65536 ubuntu:165536:65536 mktbilling:231072:65536
cat /etc/lxc/lxc-usernet# USERNAME TYPE BRIDGE COUNT mktbilling_gmail_com veth lxcbr0 10
cat ~/.config/lxc/default.conf lxc.net.0.type = veth lxc.net.0.link = lxcbr0 lxc.net.0.flags = up lxc.net.0.hwaddr = 00:16:3e:xx:xx:xx lxc.idmap = u 0 231072 65536 lxc.idmap = g 0 231072 65536
uname -vp#49~18.04.1-Ubuntu SMP Fri Jun 18 21:33:55 UTC 2021 x86_64
I even tried the suggestion by KevinCSmallwood from the thread:
sudo lxc-create -t download -n unpriv-cont-user -- -d ubuntu -r xenial -a amd64Setting up the GPG keyring ERROR: Unable to fetch GPG key from keyserver lxc-create: unpriv-cont-user: lxccontainer.c: create_run_template: 1617 Failed to create container from template lxc-create: unpriv-cont-user: tools/lxc_create.c: main: 327 Failed to create container unpriv-cont-user
Comments
-
Hi @mkturner,
Did the
setfaclcommand and /or the--keyserveroption not help to resolve your issue?Also, there seems to be a slight inconsistency with the content of
/etc/lxc/lxc-usernet. Is the username entry correct?Regards,
-Chris0 -
@chrispokorni said:
Hi @mkturner,Did the
setfaclcommand and /or the--keyserveroption not help to resolve your issue?Also, there seems to be a slight inconsistency with the content of
/etc/lxc/lxc-usernet. Is the username entry correct?Regards,
-ChrisYes, I noticed that and thought it strange as well. I do have OS Login enabled, would that cause an issue?
whoami
mktbilling_gmail_comSo that's what i put in
lxc-usernet.lxc-create -t download -n unpriv-cont-user -- --keyserver keyserver.ubuntu.com
lxc-create: unpriv-cont-user: conf.c: chown_mapped_root: 3226 lxc-usernsexec failed: No such file or directory - Failed to open tt lxc-create: unpriv-cont-user: tools/lxc_create.c: main: 327 Failed to create container unpriv-cont-userid -u mktbilling_gmail_com
1073413225setfacl -R -m u:1073413225:x ~/.local
lxc-create -t download -n unpriv-cont-userlxc-create: unpriv-cont-user: conf.c: chown_mapped_root: 3226 lxc-usernsexec failed: No such file or directory - Failed to open tt lxc-create: unpriv-cont-user: tools/lxc_create.c: main: 327 Failed to create container unpriv-cont-user0 -
I figured it out.
id -u mktbilling
1001So
mktbillingandmktbilling_gmail_comare two different users. That's when I realized I had enabled OS Login on this GCP instance and it probably created this new user. I disabled OS Login and ssh in as the mktbilling user. Then I tried the setfacl suggestion:setfacl -R -m u:$(id -u mktbilling):x ~/.local
setfacl -R -m u:1001:x ~/.localStill, errors with the lxc-create command
lxc-create -t download -n priv-contSetting up the GPG keyring ERROR: Unable to fetch GPG key from keyserver lxc-create: priv-cont: lxccontainer.c: create_run_template: 1617 Failed to create container from template lxc-create: priv-cont: tools/lxc_create.c: main: 327 Failed to create container priv-contFixed by the suggestion of
proliantin the other thread which recommends explicitly specifying key server
lxc-create -t download -n priv-cont -- --keyserver keyserver.ubuntu.comSetting up the GPG keyring
Downloading the image indexDIST RELEASE ARCH VARIANT BUILD
almalinux 8 amd64 default 20210719_23:08
almalinux 8 arm64 default 20210719_23:08
alpine 3.11 amd64 default 20210720_13:36
...Do you know why this is? If so please explain
0
Categories
- All Categories
- 61 LFX Mentorship
- 114 LFX Mentorship: Linux Kernel
- 618 Linux Foundation IT Professional Programs
- 322 Cloud Engineer IT Professional Program
- 141 Advanced Cloud Engineer IT Professional Program
- 56 DevOps Engineer IT Professional Program
- 67 Cloud Native Developer IT Professional Program
- 6 Express Training Courses
- 6 Express Courses - Discussion Forum
- 2.3K Training Courses
- 19 LFC110 Class Forum - Discontinued
- 9 LFC131 Class Forum
- 31 LFD102 Class Forum
- 178 LFD103 Class Forum
- LFD110 Class Forum
- 24 LFD121 Class Forum
- LFD133 Class Forum
- 2 LFD137 Class Forum
- 62 LFD201 Class Forum
- 2 LFD210 Class Forum
- 1 LFD210-CN Class Forum
- 1 LFD213 Class Forum - Discontinued
- 128 LFD232 Class Forum - Discontinued
- LFD233 Class Forum
- LFD237 Class Forum
- 23 LFD254 Class Forum
- 659 LFD259 Class Forum
- 108 LFD272 Class Forum
- 1 LFD272-JP クラス フォーラム
- 4 LFD273 Class Forum
- LFS101 Class Forum
- LFS116 Class Forum
- 2 LFS145 Class Forum
- 28 LFS200 Class Forum
- 740 LFS201 Class Forum - Discontinued
- 1 LFS201-JP クラス フォーラム
- 13 LFS203 Class Forum
- 98 LFS207 Class Forum
- 301 LFS211 Class Forum
- 54 LFS216 Class Forum
- 47 LFS241 Class Forum
- 41 LFS242 Class Forum
- 38 LFS243 Class Forum
- 12 LFS244 Class Forum
- LFS245 Class Forum
- 41 LFS250 Class Forum
- 1 LFS250-JP クラス フォーラム
- LFS251 Class Forum
- 143 LFS253 Class Forum
- LFS254 Class Forum
- LFS255 Class Forum
- 2 LFS256 Class Forum
- LFS257 Class Forum
- 1.2K LFS258 Class Forum
- 10 LFS258-JP クラス フォーラム
- 108 LFS260 Class Forum
- 147 LFS261 Class Forum
- 39 LFS262 Class Forum
- 83 LFS263 Class Forum - Discontinued
- 15 LFS264 Class Forum - Discontinued
- 11 LFS266 Class Forum - Discontinued
- 21 LFS267 Class Forum
- 18 LFS268 Class Forum
- 26 LFS269 Class Forum
- 204 LFS272 Class Forum
- 1 LFS272-JP クラス フォーラム
- LFS274 Class Forum
- 3 LFS281 Class Forum
- 258 LFW211 Class Forum
- 179 LFW212 Class Forum
- 9 SKF100 Class Forum
- SKF200 Class Forum
- 908 Hardware
- 221 Drivers
- 74 I/O Devices
- 44 Monitors
- 116 Multimedia
- 210 Networking
- 102 Printers & Scanners
- 86 Storage
- 765 Linux Distributions
- 88 Debian
- 66 Fedora
- 15 Linux Mint
- 13 Mageia
- 24 openSUSE
- 144 Red Hat Enterprise
- 33 Slackware
- 13 SUSE Enterprise
- 357 Ubuntu
- 484 Linux System Administration
- 40 Cloud Computing
- 71 Command Line/Scripting
- Github systems admin projects
- 95 Linux Security
- 80 Network Management
- 108 System Management
- 52 Web Management
- 75 Mobile Computing
- 25 Android
- 35 Development
- 1.2K New to Linux
- 1.1K Getting Started with Linux
- 544 Off Topic
- 131 Introductions
- 223 Small Talk
- 22 Study Material
- 836 Programming and Development
- 285 Kernel Development
- 517 Software Development
- 975 Software
- 261 Applications
- 185 Command Line
- 3 Compiling/Installing
- 119 Games
- 318 Installation
- 65 All In Program
- 65 All In Forum
Upcoming Training
-
August 20, 2018
Kubernetes Administration (LFS458)
-
August 20, 2018
Linux System Administration (LFS301)
-
August 27, 2018
Open Source Virtualization (LFS462)
-
August 27, 2018
Linux Kernel Debugging and Security (LFD440)