Comment 11 for bug 1990064

Sorry, this answer has confused me even more... heres an example of what we're currently using, perhaps you can speak to that,,, the user in this case has no special rights, certainly not cap_sys_admin.

james@trinity:~$ grep james /etc/subuid
james:100000:65536
james@trinity:~$ ls -asl .local/share/lxc/2004test/rootfs/ | head -8
total 68
4 drwxr-xr-x 17 100000 100000 4096 Aug 14 2020 .
4 drwxrwx--- 3 100000 james 4096 Aug 14 2020 ..
0 lrwxrwxrwx 1 100000 100000 7 Aug 14 2020 bin -> usr/bin
4 drwxr-xr-x 2 100000 100000 4096 Apr 15 2020 boot
4 drwxr-xr-x 3 100000 100000 4096 Aug 14 2020 dev
4 drwxr-xr-x 70 100000 100000 4096 Aug 14 2020 etc
4 drwxr-xr-x 3 100000 100000 4096 Aug 14 2020 home

james@trinity:~$ whoami
james
james@trinity:~$ lxc-start -n 2004test
james@trinity:~$ lxc-attach -n 2004test
root@2004test:/# exit
exit
james@trinity:~$ lxc-stop -n 2004test
james@trinity:~$