© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
513534c
demo site
(Get the code!)
Hello
I'd love to be in the loop of understanding how apparmor plans to handle pivot vs chroot going forward. As Jamie surely knows snap-confine uses pivot-root precisely because of how it is handled by apparmor. In my eyes it is a feature that allows us to craft a policy describing the view inside the mount namespace we construct. If suddenly the view will depend on the configuration of the host we initially transform from then we need to take this into account.
Are there any public plans on how apparmor upstream plans to support this?