github/kata-containers
1
0
Fork 2
mirror of https://github.com/kata-containers/kata-containers.git synced 2026-02-21 22:34:29 +00:00
Code Issues Projects Releases Wiki Activity

runtime-rs: Reset ApparmorProfile with Non value

Browse Source 
As in CoCo cases, the ApparmorProfile setting within runtime-go is set with None,
we should align it with runtime-go.

Signed-off-by: Alex Lyn <alex.lyn@antgroup.com>
This commit is contained in:
Alex Lyn
2025-10-09 09:38:49 +08:00
parent 94adc58342
commit 2de6fa520d
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/runtime-rs/crates/runtimes/virt_container/src/container_manager/manager.rs
View File

@@ -192,9 +192,11 @@ impl ContainerManager for VirtContainerManager {
if req.spec_type_url.is_empty() {
return Err(anyhow!("invalid type url"));
}
let oci_process: OCIProcess =
let mut oci_process: OCIProcess =
serde_json::from_slice(&req.spec_value).context("serde from slice")?;
oci_process.set_apparmor_profile(None);
let containers = self.containers.read().await;
let container_id = &req.process.container_id.container_id;
let c = containers