gentoo.common.conf.in revision 5b99af0079813347d90c935ea540ed7f96dcea38
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher# This derives from the global common config
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.include = @LXCTEMPLATECONFIG@/common.conf
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher
1008001f34abb42df75f840db17f14a83f0c21d4Stephen Gallagher# Gentoo common default configuration
b355dcb54194f498921743ca33304eac35d89718Stephen Gallagher# This is the most feature-full container configuration
b355dcb54194f498921743ca33304eac35d89718Stephen Gallagher# But security is not the goal.
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher# Looking for more security, see gentoo.moresecure.conf
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher# Default mount entries
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.mount.entry=sys sys sysfs defaults 0 0
dd3ba5c5b7d2a9d109963ae9e6c94fff34872221Stephen Gallagher
486237ee009f1d84fc4c85665dce80ade76f7079Stephen Gallagher# Doesn't support consoles in /dev/lxc/
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.devttydir =
2ea6196484055397cc4bc011c5960f790431fa9dStephen Gallagher
2ea6196484055397cc4bc011c5960f790431fa9dStephen Gallagher# Extra cgroup device access
1008001f34abb42df75f840db17f14a83f0c21d4Stephen Gallagher## rtc
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.cgroup.devices.allow = c 254:0 rm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher## fuse
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.cgroup.devices.allow = c 10:229 rwm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher## tun
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.cgroup.devices.allow = c 10:200 rwm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher## hpet
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.cgroup.devices.allow = c 10:228 rwm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher## kvm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagherlxc.cgroup.devices.allow = c 10:232 rwm
6b0f9cd2ee601121cb7fe1d9ad8ebce782aa8f39Stephen Gallagher## To use loop devices, copy the following line to the container's
2ea6196484055397cc4bc011c5960f790431fa9dStephen Gallagher## configuration file (uncommented).
2ea6196484055397cc4bc011c5960f790431fa9dStephen Gallagher#lxc.cgroup.devices.allow = b 7:* rwm
2ea6196484055397cc4bc011c5960f790431fa9dStephen Gallagher