lxc-ubuntu: add /dev/full, /dev/hpet, and /dev/kvm to devices whitelist

Thanks for Scott Moser for these, which allows qemu to run inside a container. Signed-off-by: Serge Hallyn <serge.hallyn@canonical.com> Signed-off-by: Daniel Lezcano <dlezcano@fr.ibm.com>
author: Serge Hallyn <serge.hallyn@canonical.com> 2012-01-23 11:59:56 -0600
committer: Daniel Lezcano <daniel.lezcano@free.fr> 2012-02-26 10:44:40 +0100
commit: 2407e68ef2a1bc26323334a3249bdd64337ccd91 (patch)
tree: 09016fb849a0ce5585cd9a115b0d0e19ea149d39
parent: drop mac_admin and mac_override (diff)
download: lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.tar.gz
lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.tar.bz2
lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/templates/lxc-ubuntu.in b/templates/lxc-ubuntu.in
index ba601ed..d7e9b8c 100644
--- a/templates/lxc-ubuntu.in
+++ b/templates/lxc-ubuntu.in
@@ -231,6 +231,12 @@ lxc.cgroup.devices.allow = c 254:0 rwm
 lxc.cgroup.devices.allow = c 10:229 rwm
 #tun
 lxc.cgroup.devices.allow = c 10:200 rwm
+#full
+lxc.cgroup.devices.allow = c 1:7 rwm
+#hpet
+lxc.cgroup.devices.allow = c 10:228 rwm
+#kvm
+lxc.cgroup.devices.allow = c 10:232 rwm
 EOF
 
     cat <<EOF > $path/fstab
author	Serge Hallyn <serge.hallyn@canonical.com>	2012-01-23 11:59:56 -0600
committer	Daniel Lezcano <daniel.lezcano@free.fr>	2012-02-26 10:44:40 +0100
commit	2407e68ef2a1bc26323334a3249bdd64337ccd91 (patch)
tree	09016fb849a0ce5585cd9a115b0d0e19ea149d39
parent	drop mac_admin and mac_override (diff)
download	lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.tar.gz lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.tar.bz2 lxc-2407e68ef2a1bc26323334a3249bdd64337ccd91.zip