github.com/mirantis/virtlet@v1.5.2-0.20191204181327-1659b8a48e9b/deploy/apparmor/README.md (about) 1 # AppArmor profiles 2 3 In order to get the Virtlet DaemonSet work in 4 an [AppArmor](https://gitlab.com/apparmor/apparmor/wikis/home) enabled environment follow the next steps: 5 6 * install the profiles located in [this directory](https://github.com/Mirantis/virtlet/tree/master/deploy/apparmor) into the corresponding directory (`/etc/apparmor.d/` if you use Debian or its derivatives) 7 8 sudo install -m 0644 libvirtd virtlet vms -t /etc/apparmor.d/ 9 10 * apply them by 11 * restarting the apparmor service 12 13 sudo systemctl restart apparmor 14 15 * or by hand, using the following commands 16 17 sudo apparmor_parser -r /etc/apparmor.d/libvirtd 18 sudo apparmor_parser -r /etc/apparmor.d/virtlet 19 sudo apparmor_parser -r /etc/apparmor.d/vms 20 21 * set the corresponding profiles in the Virtlet DaemonSet: 22 23 spec: 24 template: 25 metadata: 26 annotations: 27 container.apparmor.security.beta.kubernetes.io/libvirt: localhost/libvirtd 28 container.apparmor.security.beta.kubernetes.io/vms: localhost/vms 29 container.apparmor.security.beta.kubernetes.io/virtlet: localhost/virtlet 30 31 * [re]create the Virtlet DamonSet using standard Kubernetes approach