projects / platform / upstream / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 714e2e1) | patch
nspawn: mount most of the cgroup tree read-only in nspawn containers except for the...
authorLennart Poettering <lennart@poettering.net>
Tue, 30 Dec 2014 00:57:23 +0000 (01:57 +0100)
committerLennart Poettering <lennart@poettering.net>
Mon, 5 Jan 2015 00:40:51 +0000 (01:40 +0100)
commitb12afc8c5c5c3ee5720780df9a602288bbcc24ea
treec31283a2db47472b134744bf353c9953e089bd62tree | snapshot
parent714e2e1d56b97dcf2ebae2d0447b48f21e38a600commit | diff
nspawn: mount most of the cgroup tree read-only in nspawn containers except for the container's own subtree in the name=systemd hierarchy

More specifically mount all other hierarchies in their entirety and the
name=systemd above the container's subtree read-only.
src/core/mount-setup.c diff | blob | history
src/nspawn/nspawn.c diff | blob | history
src/shared/cgroup-util.c diff | blob | history
src/shared/cgroup-util.h diff | blob | history
Domain: System / System Framework;