Add lxc.aa_profile example to all templates

LXC has optional apparmor support, default profile is lxc-container-default. This change adds a commented "lxc.aa_profile = default" line to all templates, uncommenting this will bypass apparmor for the container. Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>

Add lxc.aa_profile example to all templates
69d66f1e · Stéphane Graber · 0a8722fd · 69d66f1e
Commit 69d66f1e authored Aug 29, 2012 by Stéphane Graber
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

lxc-busybox.in templates/lxc-busybox.in +3 -0

No files found.
--- a/templates/lxc-busybox.in
+++ b/templates/lxc-busybox.in
@@ -233,6 +233,9 @@ cat <<EOF >> $path/config
 lxc.utsname = $name
 lxc.tty = 1
 lxc.pts = 1
+
+# When using LXC with apparmor, uncomment the next line to run unconfined:
+#lxc.aa_profile = unconfined
 EOF

 if [ -d "$rootfs/lib" ]; then