On Thu, Mar 19, 2015, at 10:25 AM, Daniel J Walsh wrote:

I think this would break on other machines that do not have libvirt installed on the host.
Right, it's a problem orthogonal to the Atomic Host.
Scott we found an interesting problem with libvirt protections on /dev/kvm.  If you run this container on an atomic machine, the device has the wrong protections. 
In general, Docker containers that want to access host devices may need to replicate some of the logic from the host udev.