[CFT][PATCH 00/10] Making new mounts of proc and sysfs as safe as bind mounts (take 2)

Andy Lutomirski luto at amacapital.net
Fri May 22 18:59:03 UTC 2015

On Fri, May 22, 2015 at 10:39 AM, Eric W. Biederman
<ebiederm at xmission.com> wrote:
> I had hoped to get some Tested-By's on that patch series.

Sorry, I've been totally swamped.

I suspect that Sandstorm is okay, but I haven't had a chance to test
it for real.  Sandstorm makes only limited use of proc and sysfs in
containers, but I'll see if I can test it for real this weekend.

> Oh well.  The fundamentals seem sound, and my biggest concern the
> implicit nodev does not apply so I will put this patchset in linux-next
> and aim at merging it in the next merge window.  Hopefully that will
> leave enough time catch problems.
> Eric

Andy Lutomirski
AMA Capital Management, LLC

More information about the Containers mailing list