Re: Am I missing a trick somewhere? lxc-usernsexec and squashfs

To: debian-user@lists.debian.org
Subject: Re: Am I missing a trick somewhere? lxc-usernsexec and squashfs
From: Tim Woodall <debianuser@woodall.me.uk>
Date: Sun, 7 Apr 2024 10:20:12 +0100 (BST)
Message-id: <[🔎] alpine.DEB.2.21.2404071008350.20695@dirac.home.woodall.me.uk>
In-reply-to: <[🔎] alpine.DEB.2.21.2404061739140.20695@dirac.home.woodall.me.uk>
References: <[🔎] alpine.DEB.2.21.2404061739140.20695@dirac.home.woodall.me.uk>

On Sat, 6 Apr 2024, Tim Woodall wrote:

Hi,

I use lxc-usernsexec to simulate root (and other users) for a non-root
user.

lxc-usernsexec -m b:0:100000:65536

That then chroots into an overlayfs mounted using fuse.

The lowerdir is a mounted squashfs, the upperdir is a regular directory.

squashfuse rootimg.sqfs lower
fuse-overlayfs -o lowerdir=lower,upperdir=upper,workdir=work mount

This is all working nicely, and much faster than extracting a tarfile to
generate the lowerdir which is what I used to do.

But I have to jump through hoops to generate the lower sqfs.

Turns out there was something wrong with my testing. Not exactly sure
what I did wrong but provided you do the mounting inside the container
then it "just works". The hoops are only needed if you want to mount
outside the container.

Tim.

Reply to:

References:
- Am I missing a trick somewhere? lxc-usernsexec and squashfs
  - From: Tim Woodall <debianuser@woodall.me.uk>

Prev by Date: Re: Apt configuration - As Stable As Possible
Next by Date: Re: System hangs at GDM login or a bit later...
Previous by thread: Am I missing a trick somewhere? lxc-usernsexec and squashfs
Next by thread: Apt configuration - As Stable As Possible
Index(es):
- Date
- Thread