From: Alexandros Kosiaris <akosiaris@gmail.com>
Date: Mon, 30 Jul 2018 12:01:15 +0000 (+0300)
Subject: Unprivileged's incompatibility with type=none docs
X-Git-Tag: lxc-3.1.0~188^2
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=e4b3e36;p=thirdparty%2Flxc.git

Unprivileged's incompatibility with type=none docs

Unprivileged containers are not compatible with sharing the
host namespace due to an inability to mount sysfs. Add docs
in lxc.container.conf to document that out.

Refs #2463

Signed-off-by: Alexandros Kosiaris <akosiaris@gmail.com>
---

diff --git a/doc/lxc.container.conf.sgml.in b/doc/lxc.container.conf.sgml.in
index 9808ade6c..aca34a955 100644
--- a/doc/lxc.container.conf.sgml.in
+++ b/doc/lxc.container.conf.sgml.in
@@ -430,7 +430,9 @@ Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
               network devices are usable in the container.  It also
               means that if both the container and host have upstart as
               init, 'halt' in a container (for instance) will shut down the
-              host.
+              host. Note that unprivileged containers do not work with this
+	      setting due to an inability to mount sysfs. An unsafe workaround
+	      would be to bind mount the host's sysfs.
             </para>
 
             <para>