[lxc-devel] [PATCH 3/4] cgroup: Add lxc_setup_mount_cgroup to setup /sys/fs/cgroup inside the container
Christian Seiler
christian at iwakd.de
Thu Sep 12 15:53:37 UTC 2013
Hi Serge,
Am 12.09.2013 16:43, schrieb Serge Hallyn:
> Quoting Christian Seiler (christian at iwakd.de):
>> Add funbction to mount cgroup filesystem hierarchy into the
>> container,
>> allowing only access to the parts that the container should have
>> access
>> to, but none else.
>>
>> Signed-off-by: Christian Seiler <christian at iwakd.de>
>
> Hm, these last two patches aren't working for me. They don't break
> anything in a normal setup, but when I try use lxc.mount.auto it
> hangs. It may not be a fault in the patches, as mountall starts and
> hangs.
It may be that the image you are using doesn't like what one
of the auto-mounted filesystems is doing. It could be that if
you manually add the same entry to lxc.mount.entry, it would
also hang.
Could you try to test the patch itself by doing:
lxc-start -n $NAME -- /bin/cat /proc/self/mountinfo
If some distro images break when using auto-mounting of this stuff,
it should be up to the administrators (and/or template creators) to
decide whether to use it or not.
-- Christian
More information about the lxc-devel
mailing list