mirror of
https://github.com/moby/moby.git
synced 2022-11-09 12:21:53 -05:00
2f7596aaef
Writing the profile to /etc/apparmor.d, while also manually loading it into the kernel results in quite a bit of confusion. In addition, it means that people using apparmor but have /etc mounted read-only cannot use apparmor at all on a Docker host. Fix this by writing the profile to a temporary directory and deleting it after it's been inserted. Signed-off-by: Aleksa Sarai <asarai@suse.de> |
||
---|---|---|
.. | ||
apparmor.go | ||
template.go |