commit	78fb2d7094158cb59435badcd1190187496084b0	[log] [tgz]
author	David Munro <davidmunro@google.com>	Wed Mar 23 05:08:55 2022
committer	Chromeos LUCI <chromeos-scoped@luci-project-accounts.iam.gserviceaccount.com>	Wed Mar 23 20:32:40 2022
tree	c9e5ccbc982c7deb0500899dd3a7aec0c26dc63f
parent	28aca057569255d59151508b3c6bc058db05375f [diff]

tremplin: Enable security.nesting by default

This is needed for things like Flatpak and Nix to work, see the linked
bug for more details.
This changes the default profile, so it should apply to all containers,
not just new ones, unless people have changed their defaults.

BUG=chromium:1087937
TEST=Deploy, install new container, run flatpak.

Change-Id: I12082efb796f86011f2e671e81d810986ff86370
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/tremplin/+/3542706
Reviewed-by: Fergus Dall <sidereal@google.com>
Commit-Queue: David Munro <davidmunro@google.com>
Tested-by: David Munro <davidmunro@google.com>

src/chromiumos/tremplin/start_lxd.go[diff]

1 file changed

tree: c9e5ccbc982c7deb0500899dd3a7aec0c26dc63f

README.md

Tremplin

Tremplin is the “springboard” daemon that runs in the Termina VM and exposes a gRPC interface for managing LXD containers.