Create a gist now
Instantly share code, notes, and snippets.
What would you like to do?
Embed
Embed this gist in your website.
Share
Copy sharable URL for this gist.
Clone via
HTTPS
Clone with Git or checkout with SVN using the repository’s web address.
How to set up a *writeable* shared directory in an LXC/LXD container
| [robin@xps ~ ]$ lxc launch ubuntu:16.04 my-xenial # Create & start a new container | |
| [robin@xps ~ ]$ getfacl ./share/ # Check extended permissions on "share" directory | |
| # file: share | |
| # owner: robin | |
| # group: robin | |
| user::rwx | |
| group::rwx | |
| other::r-x | |
| [robin@xps ~ ]$ sudo ls -ld /var/lib/lxd/containers/my-xenial # Find the user ID for my container (165536) | |
| [sudo] password for robin: | |
| drwxr-xr-x+ 4 165536 165536 4096 May 13 08:59 /var/lib/lxd/containers/my-xenial | |
| [robin@xps ~ ]$ # Give my container access to the "share" directory | |
| [robin@xps ~ ]$ setfacl -Rm user:lxd:rwx,default:user:lxd:rwx,user:165536:rwx,default:user:165536:rwx share | |
| [robin@xps ~ ]$ getfacl share # Behold the new expanded permissions! | |
| # file: share | |
| # owner: robin | |
| # group: robin | |
| user::rwx | |
| user:lxd:rwx | |
| user:165536:rwx | |
| group::rwx | |
| mask::rwx | |
| other::r-x | |
| default:user::rwx | |
| default:user:lxd:rwx | |
| default:user:165536:rwx | |
| default:group::rwx | |
| default:mask::rwx | |
| default:other::r-x | |
| [robin@xps ~ ]$ # Add the shared directory to the container as a device | |
| [robin@xps ~ ]$ lxc config device add my-xenial share disk source=`pwd`/share path=/srv/share | |
| Device share added to my-xenial | |
| [robin@xps ~ ]$ # I can now successfully create a new file in the shared directory | |
| [robin@xps ~ ]$ lxc exec my-xenial -- touch /srv/share/anewfile | |
| [robin@xps ~ ]$ ls -l share/anewfile | |
| -rw-rw-r--+ 1 165536 165536 0 May 13 14:22 share/anewfile |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment