[libvirt] [RFC] [PATCH v2 6/6] Mount fuse's meminfo file to container's /proc/meminfo
we already have virtualize meminfo for container through fuse filesystem,
add function lxcContainerMountProcFuse to mount this meminfo file to
the container's /proc/meminfo.
So we can isolate container's /proc/meminfo from host now.
Signed-off-by: Gao feng <gaofeng(a)cn.fujitsu.com>
---
src/lxc/lxc_container.c | 37 +++++++++++++++++++++++++++++++++++++
1 files changed, 37 insertions(+), 0 deletions(-)
diff --git a/src/lxc/lxc_container.c b/src/lxc/lxc_container.c
index 6fdf359..6067cd2 100644
--- a/src/lxc/lxc_container.c
+++ b/src/lxc/lxc_container.c
@@ -517,6 +517,35 @@ cleanup:
return rc;
}
+#if HAVE_FUSE
+static int lxcContainerMountProcFuse(virDomainDefPtr def,
+ const char *srcprefix)
+{
+ int ret = 0;
+ char *meminfo_path = NULL;
+
+ if ((ret = virAsprintf(&meminfo_path,
+ "%s/%s/%s/meminfo",
+ srcprefix, LXC_STATE_DIR,
+ def->name)) < 0)
+ return ret;
+
+ if ((ret = mount(meminfo_path, "/proc/meminfo",
+ NULL, MS_BIND, NULL)) < 0) {
+ virReportSystemError(errno,
+ _("Failed to mount %s on /proc/meminfo"),
+ meminfo_path);
+ }
+ VIR_FREE(meminfo_path);
+ return ret;
+}
+#else
+static int lxcContainerMountProcFuse(virDomainDefPtr def ATTRIBUTE_UNUSED,
+ const char *srcprefix ATTRIBUTE_UNUSED)
+{
+ return 0;
+}
+#endif
static int lxcContainerMountFSDevPTS(virDomainFSDefPtr root)
{
@@ -1441,6 +1470,10 @@ static int lxcContainerSetupPivotRoot(virDomainDefPtr vmDef,
if (lxcContainerMountBasicFS(true, sec_mount_options) < 0)
goto cleanup;
+ /* Mounts /proc/meminfo etc sysinfo */
+ if (lxcContainerMountProcFuse(vmDef, "/.oldroot") < 0)
+ goto cleanup;
+
/* Now we can re-mount the cgroups controllers in the
* same configuration as before */
if (lxcContainerMountCGroups(mounts, nmounts, sec_mount_options) < 0)
@@ -1520,6 +1553,10 @@ static int lxcContainerSetupExtraMounts(virDomainDefPtr vmDef,
if (lxcContainerMountBasicFS(false, sec_mount_options) < 0)
goto cleanup;
+ /* Mounts /proc/meminfo etc sysinfo */
+ if (lxcContainerMountProcFuse(vmDef, "/.oldroot") < 0)
+ goto cleanup;
+
/* Now we can re-mount the cgroups controllers in the
* same configuration as before */
if (lxcContainerMountCGroups(mounts, nmounts, sec_mount_options) < 0)
--
1.7.7.6