diff options
| author | Luca Boccassi <luca.boccassi@microsoft.com> | 2020-07-30 19:37:10 +0100 |
|---|---|---|
| committer | Luca Boccassi <luca.boccassi@microsoft.com> | 2021-01-18 17:24:05 +0000 |
| commit | 5e8deb94c6f05137942b10b5288a37d9b09fd43f (patch) | |
| tree | 1cbed6e76c6398d4c183a6b71e0a9927386833d8 /man/systemd.exec.xml | |
| parent | 94293d65cd4125347e21b3e423d0e245226b1be2 (diff) | |
| download | systemd-5e8deb94c6f05137942b10b5288a37d9b09fd43f.tar.gz | |
core: add DBUS method to bind mount new nodes without service restart
Allow to setup new bind mounts for a service at runtime (via either
DBUS or a new 'systemctl bind' verb) with a new helper that forks into
the unit's mount namespace.
Add a new integration test to cover this.
Useful for zero-downtime addition to services that are running inside
mount namespaces, especially when using RootImage/RootDirectory.
If a service runs with a read-only root, a tmpfs is added on /run
to ensure we can create the airlock directory for incoming mounts
under /run/host/incoming.
Diffstat (limited to 'man/systemd.exec.xml')
| -rw-r--r-- | man/systemd.exec.xml | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/man/systemd.exec.xml b/man/systemd.exec.xml index 568839e0d9..9adb6a298e 100644 --- a/man/systemd.exec.xml +++ b/man/systemd.exec.xml @@ -285,6 +285,10 @@ the service with a private, minimal version of <filename>/dev/</filename>, combine this option with <varname>PrivateDevices=</varname>.</para> + <para>In order to allow propagating mounts at runtime in a safe manner, <filename>/run/systemd/propagate</filename> + on the host will be used to set up new mounts, and <filename>/run/host/incoming/</filename> in the private namespace + will be used as an intermediate step to store them before being moved to the final mount point.</para> + <xi:include href="system-only.xml" xpointer="singular"/></listitem> </varlistentry> |