~ubuntu-branches/ubuntu/quantal/lxc/quantal-proposed

« back to all changes in this revision

Viewing changes to debian/apparmor/lxc-default-with-nesting

  • Committer: Package Import Robot
  • Author(s): Stéphane Graber, Serge Hallyn, Stéphane Graber
  • Date: 2012-06-25 01:34:12 UTC
  • Revision ID: package-import@ubuntu.com-20120625013412-y72y0r5r6i4t9rhg
Tags: 0.8.0~rc1-4ubuntu15
[ Serge Hallyn ]
* Add 'lxc-aa-custom-profile' command to make it easier to start using a
  cusom profile for a container.

[ Stéphane Graber ]
* Update apparmor profiles to fix nesting:
  - Allow fstype=cgroup mounts for lxc-default-with-nesting
  - Only prevent mounting devpts for lxc-default and not
    in lxc-default-with-nesting as it's required to spawn containers.

Show diffs side-by-side

added added

removed removed

Lines of Context:
4
4
profile lxc-container-default-with-nesting flags=(attach_disconnected,mediate_deleted) {
5
5
  #include <abstractions/lxc-container-default>
6
6
  #include <abstractions/lxc-start-container>
 
7
 
 
8
  mount fstype=cgroup -> /sys/fs/cgroup/**,
7
9
}