Handling of user-supplied mount that overshadows a one from spec

[kolyshkin]

A user-supplied mount with destination which is a parent of a mount in OCI spec will make the mount from spec invisible. For example, docker run -v /tmp:/sys/fs will result in spec-provided /sys/fs/cgroup mount being invisible from inside the container.

The above is definitely a configuration error, but it is currently ignored (except for /dev, which is handled as a special case, in which all the spec-supplied mounts under /dev are removed).

There are a few ways to handle it (other than to ignore):

1. Provide a warning that user-supplied mount shadows a mount from spec.
2. Upgrade the above warning to the error, i.e. bail out.
3. Sort the mounts so that the order is correct, so there's no problem of overshadowing.

For the reference, here's the (possibly incomplete) list of spec-provided mounts:

/proc
/dev
/dev/pts
/sys
/sys/fs/cgroup
/dev/mqueue		// optional
/dev/shm		// optional
/dev/init		// optional

[kolyshkin]

I tend to gravitate towards either 1 or 3, as 2 is a backward-incompatible change. 3 is also a backward-incompatible, but to a much less degree, as it should not result in any major breakage.

[kolyshkin]

Test case: run docker run -v /tmp:/sys/fs -it --network=none busybox ls /sys/fs/cgroup.

When the bug is present, you should see an empty directory or nothing.

When the bug is fixed, you should see something like

blkio             cpuset            memory            perf_event
cpu               devices           net_cls           pids
cpu,cpuacct       freezer           net_cls,net_prio  rdma
cpuacct           hugetlb           net_prio          systemd

i.e. the usual /sys/fs/cgroup contents.