[lxc-devel] [lxd/master] apparmor: Allow cgroupv2 in cgns
stgraber on Github
lxc-bot at linuxcontainers.org
Wed Oct 3 16:25:44 UTC 2018
A non-text attachment was scrubbed...
Name: not available
Type: text/x-mailbox
Size: 354 bytes
Desc: not available
URL: <http://lists.linuxcontainers.org/pipermail/lxc-devel/attachments/20181003/0101598b/attachment.bin>
-------------- next part --------------
From d2b913da89010b951be37340a38c3b1265800ec1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Graber?= <stgraber at ubuntu.com>
Date: Wed, 3 Oct 2018 12:25:21 -0400
Subject: [PATCH] apparmor: Allow cgroupv2 in cgns
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Signed-off-by: Stéphane Graber <stgraber at ubuntu.com>
---
lxd/apparmor.go | 1 +
1 file changed, 1 insertion(+)
diff --git a/lxd/apparmor.go b/lxd/apparmor.go
index f981495eee..ae2e502abb 100644
--- a/lxd/apparmor.go
+++ b/lxd/apparmor.go
@@ -338,6 +338,7 @@ func getAAProfileContent(c container) string {
if shared.PathExists("/proc/self/ns/cgroup") {
profile += "\n ### Feature: cgroup namespace\n"
profile += " mount fstype=cgroup -> /sys/fs/cgroup/**,\n"
+ profile += " mount fstype=cgroup2 -> /sys/fs/cgroup/**,\n"
}
state := c.DaemonState()
More information about the lxc-devel
mailing list