[lxc-devel] [PATCH 1/1] always check whether rootfs is shared
Serge Hallyn
serge.hallyn at ubuntu.com
Tue Feb 25 18:28:50 UTC 2014
Quoting Dwight Engen (dwight.engen at oracle.com):
> On Mon, 24 Feb 2014 23:08:26 -0600
> Serge Hallyn <serge.hallyn at ubuntu.com> wrote:
>
> > (this expands on Dwight's recent patch, commit c597baa8f9)
> >
> > After unshare(CLONE_NEWNS) and before doing any mounting, always
> > check whether rootfs is shared. Otherwise template runs or clone
> > scripts can bleed mount activity to the host.
> >
> > Signed-off-by: Serge Hallyn <serge.hallyn at ubuntu.com>
>
> Acked-by: Dwight Engen <dwight.engen at oracle.com>
>
> (You might want to change/genericize the error message since those
> are not rsync)
Good point - Stéphane kindly did that for me, thanks both :)
-serge
More information about the lxc-devel
mailing list