projects / mirror_lxc.git / blame
| Commit | Line | Data |
|---|---|---|
| c194ffc1 AV |
1 | # Based on fedora.userns.conf.in |
| 2 | # CAP_SYS_ADMIN in init-user-ns is required for cgroup.devices | |
| 3 | lxc.cgroup.devices.deny = | |
| 4 | lxc.cgroup.devices.allow = | |
| 5 | ||
| 6 | # We can't move bind-mounts, so don't use /dev/lxc/ | |
| 7 | lxc.devttydir = | |
| 8 | ||
| 9 | # Extra bind-mounts for userns | |
| 10 | lxc.mount.entry = /dev/console dev/console none bind,create=file 0 0 | |
| 11 | lxc.mount.entry = /dev/full dev/full none bind,create=file 0 0 | |
| 12 | lxc.mount.entry = /dev/null dev/null none bind,create=file 0 0 | |
| 13 | lxc.mount.entry = /dev/random dev/random none bind,create=file 0 0 | |
| 14 | lxc.mount.entry = /dev/tty dev/tty none bind,create=file 0 0 | |
| 15 | lxc.mount.entry = /dev/urandom dev/urandom none bind,create=file 0 0 | |
| 16 | lxc.mount.entry = /dev/zero dev/zero none bind,create=file 0 0 | |
| 17 | ||
| 18 | # Extra fstab entries as mountall can't mount those by itself | |
| 19 | # lxc.mount.entry = /sys/firmware/efi/efivars sys/firmware/efi/efivars none bind,optional 0 0 | |
| 20 | lxc.mount.entry = /proc/sys/fs/binfmt_misc proc/sys/fs/binfmt_misc none bind,optional 0 0 |