X-Git-Url: https://git.pld-linux.org/?a=blobdiff_plain;f=lxc-pld.in.sh;h=30236c11bd79b5003104c0066b22f76c7d5a0a2c;hb=c4c6270b5049d68864abb82dc6e5549e0f3ed3a9;hp=0d985a8dc88e6c33ef139c51c10a4de2dd2a90b3;hpb=adc39309294123c45cfa1c6ff33ffc3abb97da3d;p=packages%2Flxc.git

diff --git a/lxc-pld.in.sh b/lxc-pld.in.sh
index 0d985a8..30236c1 100755
--- a/lxc-pld.in.sh
+++ b/lxc-pld.in.sh
@@ -237,8 +237,15 @@ lxc.autodev = $auto_dev
 # When using LXC with apparmor, uncomment the next line to run unconfined:
 #lxc.aa_profile = unconfined
 
-#cgroups
+## Devices
+# Allow all devices
+#lxc.cgroup.devices.allow = a
+# Deny all devices
 lxc.cgroup.devices.deny = a
+# Allow to mknod all devices (but not using them)
+lxc.cgroup.devices.allow = c *:* m
+lxc.cgroup.devices.allow = b *:* m
+
 # /dev/null and zero
 lxc.cgroup.devices.allow = c 1:3 rwm
 lxc.cgroup.devices.allow = c 1:5 rwm