[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[bug#42849] [PATCH 2/3] linux-container: Add a jail? argument.
|
From: |
Mathieu Othacehe |
|
Subject: |
[bug#42849] [PATCH 2/3] linux-container: Add a jail? argument. |
|
Date: |
Mon, 31 Aug 2020 08:27:00 +0200 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) |
Hey Ludo,
> Why not just change the caller to pass #:mounts '() then? Am I missing
> something?
>
> I’m reluctant to introducing “jail” because that’s undefined in this
> context (reminds me of FreeBSD).
The purpose here is to avoid the "pivot-root" call that is done
unconditionally in "mount-file-systems". This way containerized process
can share the parent root file-system.
Maybe something like that would make more sense:
--8<---------------cut here---------------start------------->8---
(lambda ()
(unless (null? mounts)
(mount-file-systems root mounts
#:mount-/proc? (memq 'pid namespaces)
#:mount-/sys? (memq 'net
namespaces))))
--8<---------------cut here---------------end--------------->8---
Thanks,
Mathieu
[bug#42849] [PATCH 1/3] install: Factorize cow-store procedure., Ludovic Courtès, 2020/08/30