Our current approach is to use one sysfs mount for all the containers, but set limited visibility to sysfs dentries in a container.
Signed-off-by: Stanislav Kinsburskiy <skinsbur...@virtuozzo.com> --- lib/env.c | 3 --- 1 file changed, 3 deletions(-) diff --git a/lib/env.c b/lib/env.c index 1b03ce4..a284ec9 100644 --- a/lib/env.c +++ b/lib/env.c @@ -772,9 +772,6 @@ int pre_setup_env(const struct start_param *param) if (setup_devtmpfs()) return VZCTL_E_SYSTEM; - if (stat_file("/sys")) - mount("sysfs", "/sys", "sysfs", 0, 0); - if (env->features->mask & VE_FEATURE_NFSD) { mount("nfsd", "/proc/fs/nfsd", "nfsd", 0, 0); make_dir("/var/lib/nfs/rpc_pipefs", 1); _______________________________________________ Devel mailing list Devel@openvz.org https://lists.openvz.org/mailman/listinfo/devel