[systemd-devel] mount crypto_LUKS device in conatiner

[Lennart Poettering]

On Fri, 01.05.15 11:39, arnaud gaboury (arnaud.gaboury at gmail.com) wrote:

> My container will need access to a Luks encrypted device (/dev/sdd4)
> for its DB.

Only very select devices are accessible from inside containers, more
specifically the ones where it is fully safe to share them between
multiple containers and the host. /dev/random and /dev/null are of
this kind, however device mapper (DM) devices are not. 

This is a limitation of the Linux kernel really, it does not support
proper device virtualization for things like this, and probably never
will.

Or in other words: LVM and DM (and thus LUKS) are something you can
use on the host only, sorry.

Lennart

-- 
Lennart Poettering, Red Hat