Hey Ludo, > Why not just change the caller to pass #:mounts '() then? Am I missing > something? > > I’m reluctant to introducing “jail” because that’s undefined in this > context (reminds me of FreeBSD). The purpose here is to avoid the "pivot-root" call that is done unconditionally in "mount-file-systems". This way containerized process can share the parent root file-system. Maybe something like that would make more sense: --8<---------------cut here---------------start------------->8--- (lambda () (unless (null? mounts) (mount-file-systems root mounts #:mount-/proc? (memq 'pid namespaces) #:mount-/sys? (memq 'net namespaces)))) --8<---------------cut here---------------end--------------->8--- Thanks, Mathieu