Function setup_sys_mount 

pub(crate) fn setup_sys_mount(fstype: &str, fspath: &str) -> Result<()>

By default, podman/docker etc. when passed --privileged mount /sys as read-only, but non-recursively. We selectively grab sub-filesystems that we need.