Skip to content

Commit 1da1f00

Browse files
stefanbergerstefanberger
committed
maskedPaths: Add /sys/devices/virtual/tpm
Add /sys/devices/virtual/tpm to the mask paths to avoid isolation issues via sysfs for TPM 1.2 Signed-off-by: Stefan Berger <[email protected]>
1 parent b22e403 commit 1da1f00

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

libcontainer/specconv/example.go

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -121,6 +121,7 @@ func Example() *specs.Spec {
121121
"/proc/sched_debug",
122122
"/sys/firmware",
123123
"/proc/scsi",
124+
"/sys/devices/virtual/tpm",
124125
},
125126
ReadonlyPaths: []string{
126127
"/proc/bus",

0 commit comments

Comments
 (0)