@@ -69,7 +69,7 @@ RUN cd /usr/local/lvm2 \

 # see https://git.fedorahosted.org/cgit/lvm2.git/tree/INSTALL

 # Install lxc

-ENV LXC_VERSION 1.0.7

+ENV LXC_VERSION 1.1.2

 RUN mkdir -p /usr/src/lxc \

 	&& curl -sSL https://linuxcontainers.org/downloads/lxc/lxc-${LXC_VERSION}.tar.gz | tar -v -C /usr/src/lxc/ -xz --strip-components=1

 RUN cd /usr/src/lxc \

@@ -46,6 +46,9 @@ lxc.cgroup.devices.allow = {{$allowedDevice.CgroupString}}

 # Use mnt.putold as per https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/986385

 lxc.pivotdir = lxc_putold

+# lxc.autodev is not compativle with lxc --device switch

+lxc.autodev = 0

+

 # NOTICE: These mounts must be applied within the namespace

 {{if .ProcessConfig.Privileged}}

 # WARNING: mounting procfs and/or sysfs read-write is a known attack vector.

@@ -67,11 +70,11 @@ lxc.aa_profile = {{.AppArmorProfile}}

 {{end}}

 {{if .ProcessConfig.Tty}}

-lxc.mount.entry = {{.ProcessConfig.Console}} {{escapeFstabSpaces $ROOTFS}}/dev/console none bind,rw 0 0

+lxc.mount.entry = {{.ProcessConfig.Console}} {{escapeFstabSpaces $ROOTFS}}/dev/console none bind,rw,create=file 0 0

 {{end}}

-lxc.mount.entry = devpts {{escapeFstabSpaces $ROOTFS}}/dev/pts devpts {{formatMountLabel "newinstance,ptmxmode=0666,nosuid,noexec" ""}} 0 0

-lxc.mount.entry = shm {{escapeFstabSpaces $ROOTFS}}/dev/shm tmpfs {{formatMountLabel "size=65536k,nosuid,nodev,noexec" ""}} 0 0

+lxc.mount.entry = devpts {{escapeFstabSpaces $ROOTFS}}/dev/pts devpts {{formatMountLabel "newinstance,ptmxmode=0666,nosuid,noexec,create=dir" ""}} 0 0

+lxc.mount.entry = shm {{escapeFstabSpaces $ROOTFS}}/dev/shm tmpfs {{formatMountLabel "size=65536k,nosuid,nodev,noexec,create=dir" ""}} 0 0

 {{range $value := .Mounts}}

 {{$createVal := isDirectory $value.Source}}