fix(lyrion): Fix LXC cgroup v2 compatibility and host networking

- Remove cgroup:mixed from mount.auto (incompatible with cgroup v2)
- Add lxc.net.0.type = none for proper host network sharing
- Add lxc.seccomp.profile = and lxc.autodev = 1 for cgroup v2

Fixes container startup failure with "Failed to mount /sys/fs/cgroup"

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

package/secubox/secubox-app-lyrion/files/usr/sbin/lyrionctl

@@ -588,11 +588,12 @@ lxc.uts.name = $LXC_NAME
 # Root filesystem
 lxc.rootfs.path = dir:$LXC_ROOTFS
 
-# Network - inherit host network (no lxc.net = share host namespace)
+# Network - share host network namespace
 # Needed for Squeezebox UDP 3483 broadcast discovery
+lxc.net.0.type = none
 
-# Mounts
-lxc.mount.auto = proc:mixed sys:ro cgroup:mixed
+# Mounts (no cgroup:mixed - incompatible with cgroup v2)
+lxc.mount.auto = proc:mixed sys:ro
 lxc.mount.entry = $data_path config none bind,create=dir 0 0
 lxc.mount.entry = $media_path music none bind,ro,create=dir 0 0
 
@@ -602,6 +603,10 @@ lxc.cap.drop = sys_admin sys_module mac_admin mac_override
 # cgroups limits (cgroup2 format)
 lxc.cgroup2.memory.max = $mem_bytes
 
+# cgroup v2 compatibility
+lxc.seccomp.profile =
+lxc.autodev = 1
+
 # Run as nobody user (uid/gid 65534) - Lyrion must not run as root
 lxc.init.uid = 65534
 lxc.init.gid = 65534