jeans/supervisor
jeans/supervisor
1
0
Fork 0
mirror of https://github.com/home-assistant/supervisor.git synced 2025-07-13 12:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Disable AppArmor/SecComp (#266)

Browse Source 
Disable AppArmor
This commit is contained in:
Pascal Vizeli 2017-12-10 23:10:25 +01:00 committed by GitHub
parent 664334f1ad
commit 6a5bd5a014
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
hassio/dock/addon.py
View File

@ -95,6 +95,17 @@ class DockerAddon(DockerInterface):
if host_port if host_port
} }
@property
def security_opt(self):
"""Controlling security opt."""
privileged = self.addon.privileged or []
# Disable AppArmor sinse it make troubles wit SYS_ADMIN
if 'SYS_ADMIN' in privileged:
return [
"apparmor:unconfined",
]
@property @property
def tmpfs(self): def tmpfs(self):
"""Return tmpfs for docker add-on.""" """Return tmpfs for docker add-on."""
@ -199,6 +210,7 @@ class DockerAddon(DockerInterface):
extra_hosts=self.network_mapping, extra_hosts=self.network_mapping,
devices=self.devices, devices=self.devices,
cap_add=self.addon.privileged, cap_add=self.addon.privileged,
security_opt=self.security_opt,
environment=self.environment, environment=self.environment,
volumes=self.volumes, volumes=self.volumes,
tmpfs=self.tmpfs tmpfs=self.tmpfs