summaryrefslogtreecommitdiff
path: root/src/core/ima-setup.c
diff options
context:
space:
mode:
authorLuke Shumaker <lukeshu@lukeshu.com>2017-06-01 13:59:20 -0400
committerLuke Shumaker <lukeshu@lukeshu.com>2017-06-16 17:06:55 -0400
commit2fbe69d3ffd1be92eda13ea782337349d63af14b (patch)
treed4eff39a8337341d49c1f185ff97b3c268a52fa8 /src/core/ima-setup.c
parentdc87440fa9ce11de578895cdf5326bb288cd78dc (diff)
nspawn: mount_sysfs(): Reword the comment about /sys/fs/cgroup
The comment explains the obvious, but doesn't even mention the tricky part. Of course we need do set things up before we remount read-only! That's the general theme of the function! What was totally non-obvious is why we only need to create it if cg_ns_supported(), as the directory needs to exist no matter what. From reading the code, I was convinced that it was broken on pre-cgns kernels (pre-4.6, unless a distro backported it). So explain that skippint creating if !cg_ns_supported() is an optimization.
Diffstat (limited to 'src/core/ima-setup.c')
0 files changed, 0 insertions, 0 deletions