Re: [libvirt] [PATCH RFC] LXC: don't RO mount /proc, /sys when user namespce enabled

[Chen, Hanxiao]

> -----Original Message-----
> From: libvir-list-boun...@redhat.com [mailto:libvir-list-boun...@redhat.com] 
> On
> Behalf Of Chen Hanxiao
> Sent: Monday, December 22, 2014 11:57 AM
> To: libvir-list@redhat.com
> Subject: [libvirt] [PATCH RFC] LXC: don't RO mount /proc, /sys when user 
> namespce
> enabled
> 
> If we enabled user ns and provided a uid/gid map,
> we do not need to mount /proc, /sys as readonly.
> Leave it to kernel for protection.
> 
> Signed-off-by: Chen Hanxiao <chenhanx...@cn.fujitsu.com>
> ---

ping

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list