]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 21c941e) | patch
apparmor: use /{,**} instead of /**
authorAlexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>
Wed, 5 Jun 2024 12:33:31 +0000 (14:33 +0200)
committerAlexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>
Wed, 5 Jun 2024 13:12:57 +0000 (15:12 +0200)
commit32f88c8fecaa1f909d0aeb5ff3132932138fe692
treec3e2eb244f6459f28d6dd0c25619c9aa0fa6dd21tree
parent21c941e6e3793cd518ecad9eab9a9cca39a5ca81commit | diff
apparmor: use /{,**} instead of /**

It turned out, that old (and incorrect) rule:
mount options=(rw,make-slave) -> **,

is NOT equivalent to:
mount options=(rw,make-slave) -> /**,

Let's use:
mount options=(rw,make-slave) -> /{,**},

Signed-off-by: Alexander Mikhalitsyn <aleksandr.mikhalitsyn@canonical.com>
config/apparmor/abstractions/container-base.in diff | blob | blame | history
config/apparmor/abstractions/start-container.in diff | blob | blame | history
src/lxc/lsm/apparmor.c diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git