From 7b5fc5afab419afc9f17e7286375ad6b08b5d20d Mon Sep 17 00:00:00 2001
From: Jonathan Rosser <jonathan.rosser@rd.bbc.co.uk>
Date: Wed, 17 Jul 2024 16:25:13 +0100
Subject: [PATCH] Use generated apparmor profile by default in lxc base config

This is the default setting in the upstream ubuntu 24.04 lxc image.

Change-Id: I7fe143f1812cd2fe3b50c9a327cec44f4523c1ab
---
 templates/lxc-openstack.conf.j2 | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/templates/lxc-openstack.conf.j2 b/templates/lxc-openstack.conf.j2
index 3e6dffe3..4fd83c86 100644
--- a/templates/lxc-openstack.conf.j2
+++ b/templates/lxc-openstack.conf.j2
@@ -1,5 +1,7 @@
 # {{ ansible_managed }}
 
+lxc.apparmor.profile = generated
+lxc.apparmor.allow_nesting = 1
 lxc.start.auto = 1
 lxc.start.delay = 15
 lxc.group = onboot