mrrl-containers

MRRL version of container scripts
git clone https://ccx.te2000.cz/git/mrrl-containers
Log | Files | Refs
commit 8c42ea23baa5be474bfb45382b6208b09cfbf8c3
parent 438d895c543e458b6f77288667a80de0f66e050a
Author: ccx <ccx@te2000.cz>
Date:   Fri,  1 Mar 2024 06:26:14 +0000

Try extra mount namespace to prevent stray mounts after container_sysroot_run

Diffstat:

Msbin/container_sysroot_run | 1+


1 file changed, 1 insertion(+), 0 deletions(-)

diff --git a/sbin/container_sysroot_run b/sbin/container_sysroot_run
@@ -37,6 +37,7 @@ if { chown root:${CONTAINER_USER} ${CONTAINER_TMPFS}/${tmpfs_dirs} }
 if { redirfd -w 1 ${CONTAINER_TMPFS}/run/resolv.conf printf "nameserver 127.0.0.1\n" }
 if { chown ${CONTAINER_USER}:${CONTAINER_USER} ${CONTAINER_TMPFS}/run/resolv.conf }
 
+unshare -m  # new mount namespace
 if { mount -a -T data/fstab }
 
 # Put UID/GID/GIDLIST into environment for use by s6-applyuidgid below