[systemd-devel] Run fuse in nspawn container?
Lennart Poettering
lennart at poettering.net
Wed Apr 18 10:03:57 UTC 2018
On Di, 10.04.18 13:34, Johannes Ernst (johannes.ernst at gmail.com) wrote:
> I’m running with
>
> systemd-nspawn —capability=all
>
> but now I also need /dev/fuse and I’m not permitted to create it.
>
> man systemd-nspawn says that "Device nodes may not be created.” which sounds like game over and no Fuse in the container. Is it?
Yeah, we don't allow arbitrary device node creation in nspawn
containers by default, as that's not safe. You may use
--bind=/dev/fuse, but ymmv as fuse isn't properly virtualized for
container environments last time I looked.
Lennart
--
Lennart Poettering, Red Hat
More information about the systemd-devel
mailing list