The following pull request was submitted through Github. It can be accessed and reviewed at: https://github.com/lxc/lxd/pull/1667
This e-mail was sent by the LXC bot, direct replies will not reach the author unless they happen to be subscribed to this list. === Description (from pull-request) === Surely we also want nesting to work on other architectures :) Signed-off-by: Stéphane Graber <stgra...@ubuntu.com>
From 16636f26d7b54d821b6d7ad5847a0c44356013e3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?St=C3=A9phane=20Graber?= <stgra...@ubuntu.com> Date: Fri, 26 Feb 2016 12:43:44 -0500 Subject: [PATCH] Fix hardcoded architecture path in apparmor profile MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Surely we also want nesting to work on other architectures :) Signed-off-by: Stéphane Graber <stgra...@ubuntu.com> --- lxd/apparmor.go | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lxd/apparmor.go b/lxd/apparmor.go index b983834..45fe566 100644 --- a/lxd/apparmor.go +++ b/lxd/apparmor.go @@ -27,8 +27,8 @@ const NESTING_AA_PROFILE = ` pivot_root, mount /var/lib/lxd/shmounts/ -> /var/lib/lxd/shmounts/, mount none -> /var/lib/lxd/shmounts/, - mount fstype=proc -> /usr/lib/x86_64-linux-gnu/lxc/**, - mount fstype=sysfs -> /usr/lib/x86_64-linux-gnu/lxc/**, + mount fstype=proc -> /usr/lib/*/lxc/**, + mount fstype=sysfs -> /usr/lib/*/lxc/**, mount options=(rw,bind), mount options=(rw,rbind), deny /dev/.lxd/proc/** rw,
_______________________________________________ lxc-devel mailing list lxc-devel@lists.linuxcontainers.org http://lists.linuxcontainers.org/listinfo/lxc-devel
