[Pkg-systemd-maintainers] Bug#734813: systemd as pid1 allows lxc-containers to unmount host filesystems
Vincent Bernat
bernat at debian.org
Fri Jan 10 08:30:35 GMT 2014
❦ 10 janvier 2014 09:05 CET, Alexander Larsson <alexander.larsson at gmail.com> :
> I've added code to docker to handle / being shared, since fedora works
> like that. It works by detecting a shared / and the starting lxc-start
> in its own namespace where we've mounted / as rslave. See the code
> here:
>
> https://github.com/dotcloud/docker/blob/master/container.go#L673
>
> This works out of the box on fedora. Strange that it doesn't work on
> debian.
Our version of mount is buggy and should be upgraded first. See:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731574
--
panic("CPU too expensive - making holiday in the ANDES!");
2.2.16 /usr/src/linux/arch/mips/kernel/traps.c
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 818 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-systemd-maintainers/attachments/20140110/7cdd6e4e/attachment-0002.sig>
More information about the Pkg-systemd-maintainers
mailing list