vbatts/pkg
1
0
Fork 0
Code Pull requests Releases Activity

Merge pull request #5049 from Supermathie/aa-fix

Browse source 
apparmor: docker-default: Include base abstraction
This commit is contained in:
Guillaume J. Charmes 2014-04-07 21:34:01 -07:00
commit 908be5a3d9
1 changed files with 2 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
libcontainer/apparmor/setup.go
View file

@ -11,13 +11,10 @@ import (
const DefaultProfilePath = "/etc/apparmor.d/docker" const DefaultProfilePath = "/etc/apparmor.d/docker"
const DefaultProfile = ` const DefaultProfile = `
# AppArmor profile from lxc for containers. # AppArmor profile from lxc for containers.
@{HOME}=@{HOMEDIRS}/*/ /root/
@{HOMEDIRS}=/home/
#@{HOMEDIRS}+=
@{multiarch}=*-linux-gnu*
@{PROC}=/proc/
#include <tunables/global>
profile docker-default flags=(attach_disconnected,mediate_deleted) { profile docker-default flags=(attach_disconnected,mediate_deleted) {
#include <abstractions/base>
network, network,
capability, capability,
file, file,