On Tue, Aug 06, 2013 at 08:28:31PM +0400, Andrey Borzenkov wrote:
How comes that I don't see this in /proc/mounts? And lsof don't show it, too.
bind mounts are not shown in /proc/mounts.
This is not true:
raven:/ # mkdir /tmp/t raven:/ # mount -obind / /tmp/t raven:/ # grep /tmp/t /proc/mounts /dev/mapper/cr_sda8 /tmp/t ext3 rw,relatime,data=ordered 0 0 raven:/ #
a) you did not mount /dev/mapper/cr_sda8 on /tmp/t, did you? So you have no information about bind mounts there.
/dev/mapper/cr_sda8 _IS_ my root file system. It is resolved somehow by the mount operation. Nothing on this system would mount anything on /tmp/t. If I umount /tmp/t, this line disappears again.
b) /proc/mounts is alias for /proc/self/mounts which shows mount points in *your* namespace. The whole point of namespaces is to restrict visibility ...
So why is the directory in *my* namespace locked down although the mount is limited to *their* namespace?
I still fail to understand why /var/tmp is locked down. Isn't /var/tmp/systemd-private-XXX the mount point?
No, mount point is /var/tmp. Just like in "mount /dev/foo /var/tmp".
But it is the /var/tmp in *their* namespace. -- Josef Wolf jw@raven.inka.de -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org