[systemd-devel] systemd slice and PIDs under it
Lennart Poettering
lennart at poettering.net
Mon Nov 4 11:17:35 UTC 2019
On Mo, 04.11.19 11:13, Bhasker C V (bhasker at unixindia.com) wrote:
> Hi all,
>
> Does the PIDs running inside the systemd-nspawn slice inherit the
> cgroup/slice properties ? I am running a systemd-nspawn container with 2
> firefox instances (two separate ones) and also a lot of other processes
> and I have given an option --property MemoryMax=10M. I can see that at
> the top-level systemd-spawn is showing this ...
>
> (started as systemd-nspawn --machine bcv.test --capability=CAP_IPC_LOCK
> -jbD /var/work/test/run --bind=/dev/net/tun --private-network
> --network-bridge=virt --bind /sys --bind-ro=/lib/modules/ --bind
Ahum. You cannot do --bind=/sys. This is not supported and breaks
cgroups (as cgroupfs is bind mounted below).
Lennart
--
Lennart Poettering, Berlin
More information about the systemd-devel
mailing list