]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d8ccf90) | patch
cgroup isolation: handle devices cgroup early 3359/head
authorWolfgang Bumiller <w.bumiller@proxmox.com>
Tue, 7 Apr 2020 07:57:09 +0000 (09:57 +0200)
committerWolfgang Bumiller <w.bumiller@proxmox.com>
Tue, 7 Apr 2020 08:00:52 +0000 (10:00 +0200)
commit432faf202e7b303af9a476a707db5d0f57085fa0
tree062c9da7e58a6cf321e2a02a115c00aafe3cdc19tree
parentd8ccf906038e7ca3241e572192ffa59999adb923commit | diff
cgroup isolation: handle devices cgroup early

Otherwise we cannot use an 'a' entry in devices.deny/allow
as these are not permitted once a subdirectory was created.

Without isolation we initialize the devices cgroup
particularly late, so there are probably cases which cannot
work with isolation.

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
src/lxc/cgroups/cgfsng.c diff | blob | blame | history
src/lxc/start.c diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git