Skip to content

Commit

Permalink
Add docker-apparmor.sh
Browse files Browse the repository at this point in the history
  • Loading branch information
@mikebeaton
mikebeaton committed Nov 20, 2024
1 parent 7f2ce06 commit 1d4a1db
Showing 1 changed file with 18 additions and 0 deletions.
18 changes: 18 additions & 0 deletions docker-apparmor.sh
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
#!/bin/bash

#
# REF: https://github.com/docker/docs/pull/19638/files
#

$ cat <<EOF > /etc/apparmor.d/$(echo $HOME/bin/rootlesskit | sed -e s@^/@@ -e s@/@.@g)
abi <abi/4.0>,
include <tunables/global>
$HOME/bin/rootlesskit flags=(unconfined) {
userns,
include if exists <local/$(echo $HOME/bin/rootlesskit | sed -e s@^/@@ -e s@/@.@g)>
}
EOF

$ systemctl restart apparmor.service

0 comments on commit 1d4a1db

Please sign in to comment.