我正在努力从nspawn容器中访问/dev/dri/card0并且没有成功。它甚至可能吗?
/etc/systemd/system/systemd-nspawn@centos7.service.d/override.conf:
[Service]
DeviceAllow=/dev/dri rw
DeviceAllow=/dev/shm rw
DeviceAllow=char-drm rw
ExecStart=
ExecStart=/usr/bin/systemd-nspawn --quiet --boot --link-journal=try-guest --network-veth -U --settings=override --machine=centos7 --capability=all
/etc/systemd/nspawn/centos7.nspawn:
[Exec]
Boot=yes
PrivateUsers=no
[Files]
Bind=/home/<user>
Bind=/tmp/.X11-unix
Bind=/cvmfs
Bind=/dev/shm
Bind=/dev/dri
[Network]
Private=no
在我拥有的机器中:
$ strace -e open glxinfo
...
open("/dev/dri/card0", O_RDWR|O_CLOEXEC) = -1 EPERM (Operation not permitted)
...
$ ll /dev/dri/card0
crw-rw----+ 1 root video 226, 0 Dec 13 11:55 /dev/dri/card0
$ groups
<user> wheel video
有没有办法让它发挥作用?
答案 0 :(得分:1)
解决通过添加行
ExecStartPost=/bin/sh -c 'echo a > /sys/fs/cgroup/devices/machine.slice/machine-centos7.scope/devices.allow'
到/etc/systemd/system/systemd-nspawn@centos7.service.d/override.conf文件。