git.ipfire.org Git - thirdparty/lxc.git/commit

]> git.ipfire.org Git - thirdparty/lxc.git/commit

projects / thirdparty / lxc.git / commit

author	Serge Hallyn <serge.hallyn@ubuntu.com>
	Tue, 1 Apr 2014 23:03:07 +0000 (01:03 +0200)
committer	Serge Hallyn <serge.hallyn@ubuntu.com>
	Wed, 2 Apr 2014 14:54:54 +0000 (09:54 -0500)
commit	94a77f3fd8be2fb87f7d1465521fac3ec4b7e6b5
tree	d0a78a35e30ce45c254d10dc2aeb90de5c58d49d	tree \| snapshot
parent	84ad17ede0febe7cc0d19e1125c25e549dc9104f	commit \| diff

apparmor: deny writes to most of /proc/sys (v2)

Allow writes to kernel.shm*, net.*, kernel/domainname and
kernel/hostname,

Also fix a bug in the lxc-generate-aa-rules.py script in a
path which wasn't being exercised before, which returned a
path element rather than its child.

Changelog (v2): remove trailing / from block path

Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>
Acked-by: Stéphane Graber <stgraber@ubuntu.com>

Mirror of https://github.com/lxc/lxc.git

RSS Atom

config/apparmor/abstractions/container-base		diff \| blob \| blame \| history
config/apparmor/container-rules		diff \| blob \| blame \| history
config/apparmor/container-rules.base		diff \| blob \| blame \| history
config/apparmor/lxc-generate-aa-rules.py		diff \| blob \| blame \| history