disinto

History

openhands 0b54f5e9e9 fix: Docker-in-LXD — su-exec spins at 100% CPU due to AppArmor blocking setuid (#635 ) Add security_opt: [apparmor=unconfined] to all three compose services (forgejo, woodpecker, agents) in generate_compose(). This prevents su-exec from entering an infinite CPU loop when Docker runs inside an LXD container whose default AppArmor profile blocks setuid/execve. Harmless on bare-metal Docker hosts. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-24 22:05:14 +00:00
..
disinto	fix: Docker-in-LXD — su-exec spins at 100% CPU due to AppArmor blocking setuid (#635 )	2026-03-24 22:05:14 +00:00

openhands 0b54f5e9e9 fix: Docker-in-LXD — su-exec spins at 100% CPU due to AppArmor blocking setuid (#635 )

Add security_opt: [apparmor=unconfined] to all three compose services
(forgejo, woodpecker, agents) in generate_compose(). This prevents
su-exec from entering an infinite CPU loop when Docker runs inside an
LXD container whose default AppArmor profile blocks setuid/execve.
Harmless on bare-metal Docker hosts.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-24 22:05:14 +00:00

disinto

fix: Docker-in-LXD — su-exec spins at 100% CPU due to AppArmor blocking setuid (#635 )

2026-03-24 22:05:14 +00:00