lxc-alpine: allow /dev/full

author Natanael Copa <ncopa@alpinelinux.org>

Tue, 22 Oct 2013 11:23:31 +0000 (13:23 +0200)

committer Serge Hallyn <serge.hallyn@ubuntu.com>

Tue, 22 Oct 2013 16:26:45 +0000 (11:26 -0500)
author Natanael Copa <ncopa@alpinelinux.org>
Tue, 22 Oct 2013 11:23:31 +0000 (13:23 +0200)
committer Serge Hallyn <serge.hallyn@ubuntu.com>
Tue, 22 Oct 2013 16:26:45 +0000 (11:26 -0500)
diff --git a/templates/lxc-alpine.in b/templates/lxc-alpine.in

index 5fdf36f756034c57b369e3e6a841d4296c074e6b..8600a34ce35bc659d4b0dd05e092da9e0dc92214 100644 (file)
--- a/templates/lxc-alpine.in
+++ b/templates/lxc-alpine.in
@@ -197,9 +197,10 @@ lxc.cap.drop = sys_module mac_admin mac_override sys_time
  
  # devices
  lxc.cgroup.devices.deny = a
-# /dev/null and zero
+# /dev/null, zero and full
  lxc.cgroup.devices.allow = c 1:3 rwm
  lxc.cgroup.devices.allow = c 1:5 rwm
+lxc.cgroup.devices.allow = c 1:7 rwm
  # consoles
  lxc.cgroup.devices.allow = c 5:1 rwm
  lxc.cgroup.devices.allow = c 5:0 rwm
author	Natanael Copa <ncopa@alpinelinux.org>
	Tue, 22 Oct 2013 11:23:31 +0000 (13:23 +0200)
committer	Serge Hallyn <serge.hallyn@ubuntu.com>
	Tue, 22 Oct 2013 16:26:45 +0000 (11:26 -0500)