On 09/12/2013 01:27:07 PM, Christian Seiler wrote:
> Hi there,
>
> just a quick question: currently, rootfs is pinned with a .hold file
> in
> the parent directory (which btw. does not help against file systems
> that
> are already mounted on the host but directly in the rootfs directory).
> T
This change proposes to add support to LXC for additional LSMs (Linux
Security Module), namely SELinux. It does so by turning the existing
AppArmor calls into generic lsm_* calls, which are then handled by one
of three LSM drivers: AppArmor, SELinux, or a nop driver. Adding a
SMACK driver should be
- fix Oracle template mounting of proc and sysfs, needed when using SELinux
Signed-off-by: Dwight Engen
---
configure.ac| 14
doc/lxc.conf.sgml.in| 29 ++-
src/lxc/Makefile.am | 21 -
src/lxc/apparmor.c | 219 --
