diff options
| author | Lennart Poettering <lennart@poettering.net> | 2014-02-10 13:15:42 +0100 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2014-02-10 13:18:16 +0100 |
| commit | 8a96d94e4c33173d1426b7e0a6325405804ba224 (patch) | |
| tree | 3606aea55bb646ca716ee38d0ed9ee3bb420f071 /man/systemd-nspawn.xml | |
| parent | deb678f15a6faf9feb29e18954553f5051788056 (diff) | |
nspawn: add new --share-system switch to run a container without PID/UTS/IPC namespacing
Diffstat (limited to 'man/systemd-nspawn.xml')
| -rw-r--r-- | man/systemd-nspawn.xml | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/man/systemd-nspawn.xml b/man/systemd-nspawn.xml index 96ccc5cef..ca99da490 100644 --- a/man/systemd-nspawn.xml +++ b/man/systemd-nspawn.xml @@ -428,6 +428,27 @@ itself.</para></listitem> </varlistentry> + <varlistentry> + <term><option>--share-system</option></term> + + <listitem><para>Allows the container + to share certain system facilities + with the host. More specifically, this + turns off PID namespacing, UTS + namespacing and IPC namespacing, and + thus allows the guest to see and + interact more easily with processes + outside of the container. Note that + using this option makes it impossible + to start up a full Operating System in the + container, as an init system cannot + operate in this mode. It is only + useful to run specific programs or + applications this way, without + involving an init + system in the container.</para></listitem> + </varlistentry> + </variablelist> </refsect1> |