From 7e43b7e4f4e0ec27681c4beef56c5783ff6c9494 Mon Sep 17 00:00:00 2001 From: Michael Brown Date: Mon, 7 Apr 2014 02:02:11 -0400 Subject: [PATCH] apparmor: docker-default: Include base abstraction Encountered problems on 14.04 relating to signals between container processes being blocked by apparmor. The base abstraction contains appropriate rules to allow this communication. Docker-DCO-1.1-Signed-off-by: Michael Brown (github: Supermathie) --- apparmor/setup.go | 1 + 1 file changed, 1 insertion(+) diff --git a/apparmor/setup.go b/apparmor/setup.go index 4e1c9514..cc786de9 100644 --- a/apparmor/setup.go +++ b/apparmor/setup.go @@ -18,6 +18,7 @@ const DefaultProfile = ` @{PROC}=/proc/ profile docker-default flags=(attach_disconnected,mediate_deleted) { + #include network, capability, file,