@zhenech @jpmens AFAIK there's no non-hacky way to make /proc/meminfo report the cgroup-limited amount of memory available. Basically cgroup limits (on memory, CPU, etc) are invisible unless you specifically look, so it's easy to blow stuff up if you have a program that looks at eg total native CPU count.

(The terrible hack would be a systemd mount namespace of some sort and using it to bind mount a text file on /proc/meminfo. I think this'd be 'BindReadOnlyPaths=...'.)

@jpmens and you got blogged :)

https://www.die-welt.net/2025/06/using-lxcfs-together-with-podman/