diff options
| author |   Michał Górny <mgorny@gentoo.org> | 2018-11-11 12:48:24 +0100 |
|---|---|---|
| committer | Michał Górny <mgorny@gentoo.org> | 2018-11-18 13:24:52 +0100 |
| commit | 88ba0f45b54609666445c7f8008ff699eef52b39 (patch) | |
| tree | 3aef0639bc4e77da766810a336ec7e91033bc7ce /man | |
| parent | Add FEATURES=mount-sandbox to take advantage of mount ns (diff) | |
| download | portage-88ba0f45b54609666445c7f8008ff699eef52b39.tar.gz portage-88ba0f45b54609666445c7f8008ff699eef52b39.tar.bz2 portage-88ba0f45b54609666445c7f8008ff699eef52b39.zip | |
Support FEATURES=pid-sandbox
Supporting using PID namespace in order to isolate the ebuild processes
from host system, and make it possible to kill them all easily
(similarly to cgroups but easier to use).
Bug: https://bugs.gentoo.org/659582
Reviewed-by: Zac Medico <zmedico@gentoo.org>
Signed-off-by: Michał Górny <mgorny@gentoo.org>
Diffstat (limited to 'man')
| -rw-r--r-- | man/make.conf.5 | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/man/make.conf.5 b/man/make.conf.5 index 7cb5741ad..de04e5e34 100644 --- a/man/make.conf.5 +++ b/man/make.conf.5 @@ -558,6 +558,13 @@ Use finer\-grained locks when installing packages, allowing for greater parallelization. For additional parallelization, disable \fIebuild\-locks\fR. .TP +.B pid\-sandbox +Isolate the process space for the ebuild processes. This makes it +possible to cleanly kill all processes spawned by the ebuild. +Supported only on Linux. Requires PID and mount namespace support +in kernel. /proc is remounted inside the mount namespace to account +for new PID namespace. +.TP .B prelink\-checksums If \fBprelink\fR(8) is installed then use it to undo any prelinks on files before computing checksums for merge and unmerge. This feature is |