LXC has quickly become my favorate test bed. Starting a CentOS 7 container is however slightly complicated.
First, edit the centos lxc config and remove setpcap
[code]
# /usr/share/lxc/config/centos.common.conf
– lxc.cap.drop = mac_admin mac_override setfcap setpcap
+ lxc.cap.drop = mac_admin mac_override setfcap
[/code]
Deploy your container
[code]
$ lxc-create -t centos -n c7m2 — –release 7
[/code]
Then remove the tmpfs mount on the container’s fstab
[code]
# /var/lib/lxc/c7m2/rootfs/etc/fstab
– none /dev/shm tmpfs nosuid,nodev 0 0
[/code]
Then disable apparmor in container’s config
[code]
# /var/lib/lxc/c7m2/config
+ lxc.aa_profile = unconfined
[/code]
References:
- https://github.com/lxc/lxc/pull/342
- https://github.com/SolidCharity/LightBuildServer/issues/68
