[lxc] why a container wants to mount sysfs anyway?
223 views
Skip to first unread message
Иван Присяжный
Jan 25, 2022, 11:51:58 AM1/25/22
to lxc-users
Hi,
What is the reason containers start wants to mount sysfs so badly?
Why it is in the auto-mounts list and can't be disabled?
Why sysfs is needed and whats for?
Thx,
Ivan
Ivan
Serge E. Hallyn
Jan 25, 2022, 1:42:55 PM1/25/22
to Иван Присяжный, lxc-users
A lot of user space wants to poke around /sys to get system
information.
But you can disable its mounting into containers - or should be able to - by
setting lxc.mount.auto to not include it. See 'man lxc.container.conf' for
information.
> --
> You received this message because you are subscribed to the Google Groups "lxc-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to lxc-users+...@lists.linuxcontainers.org.
> To view this discussion on the web visit https://groups.google.com/a/lists.linuxcontainers.org/d/msgid/lxc-users/6f7edb1e-8f43-4a23-9b11-3a03e287cb82n%40lists.linuxcontainers.org.
information.
But you can disable its mounting into containers - or should be able to - by
setting lxc.mount.auto to not include it. See 'man lxc.container.conf' for
information.
> You received this message because you are subscribed to the Google Groups "lxc-users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to lxc-users+...@lists.linuxcontainers.org.
> To view this discussion on the web visit https://groups.google.com/a/lists.linuxcontainers.org/d/msgid/lxc-users/6f7edb1e-8f43-4a23-9b11-3a03e287cb82n%40lists.linuxcontainers.org.
Иван Присяжный
Jan 26, 2022, 10:42:54 AM1/26/22
to lxc-users, Serge E. Hallyn, lxc-users, Иван Присяжный
вторник, 25 января 2022 г. в 20:42:55 UTC+2, Serge E. Hallyn:
A lot of user space wants to poke around /sys to get system
information.
But you can disable its mounting into containers - or should be able to - by
setting lxc.mount.auto to not include it. See 'man lxc.container.conf' for
information.
It seems that it is impossible to do so:
lxc.mount.auto = proc:mixed cgroup:ro
In current impl it is only possible to manually materialized common and user includes and comment out the strings that generally set auto sys to mixed.
Serge E. Hallyn
Jan 30, 2022, 11:09:30 PM1/30/22
to Иван Присяжный, lxc-users, Serge E. Hallyn
On Wed, Jan 26, 2022 at 07:42:53AM -0800, Иван Присяжный wrote:
>
>
> вторник, 25 января 2022 г. в 20:42:55 UTC+2, Serge E. Hallyn:
>
> > A lot of user space wants to poke around /sys to get system
> > information.
> >
> > But you can disable its mounting into containers - or should be able to -
> > by
> > setting lxc.mount.auto to not include it. See 'man lxc.container.conf' for
> > information.
> >
>
> It seems that it is impossible to do so:
It's not. I put
>
>
> вторник, 25 января 2022 г. в 20:42:55 UTC+2, Serge E. Hallyn:
>
> > A lot of user space wants to poke around /sys to get system
> > information.
> >
> > But you can disable its mounting into containers - or should be able to -
> > by
> > setting lxc.mount.auto to not include it. See 'man lxc.container.conf' for
> > information.
> >
>
> It seems that it is impossible to do so:
lxc.mount.auto = proc:mixed
Into a busybox container's config, and /sys was thereafter not mounted.
Now, if an earlier line - perhaps in a lxc.include = file - specifies
lxc.mount.auto = sys:something, then you'll have to clear that out by
doing:
lxc.mount.auto =
lxc.mount.auto = proc:mixed
-serge
Иван Присяжный
Jan 31, 2022, 7:19:50 AM1/31/22
to Serge E. Hallyn, lxc-users
>
> -serge
--
-- Ivan Prisyazhnyy
Serge E. Hallyn
Jan 31, 2022, 10:08:09 AM1/31/22
to Иван Присяжный, Serge E. Hallyn, lxc-users
that entries are appended, and the accumulated entries can be cleared by
using the line with no option. There's a line like that for the lxc.net,
I thought there was one for lxc.mount.auto.
Reply all
Reply to author
Forward
0 new messages