[Bug 1661636] Re: cinder in LXD/LXC Container doesn't support NFS mount

Fairbanks. 1661636 at bugs.launchpad.net
Mon Feb 6 12:02:30 UTC 2017


I have deployed a cinder charm to a lxd container.
I manually installed nfs-common to add nfs mount feature.

When i want to mount an NFS folder within the container i get the following message from mount using -v:
mount.nfs: timeout set for Mon Feb  6 11:59:12 2017
mount.nfs: trying text-based options 'vers=3,rsize=262144,wsize=262144,namlen=255,hard,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=,mountvers=3,mountport=2061,mountproto=tcp,lookupcache=pos,local_lock=none,addr='
mount.nfs: prog 100003, trying vers=3, prot=6
mount.nfs: trying prog 100003 vers 3 prot TCP port 2049
mount.nfs: mount(2): Permission denied
mount.nfs: access denied by server while mounting

On the host in kern.log i see the following line appear when executing the mount command:
Feb  6 11:57:13 OS1 kernel: [2748689.107067] audit: type=1400 audit(1486382233.005:1012): apparmor="DENIED" operation="mount" info="failed flags match" error=-13 profile="lxd-juju-309867-0-lxd-15_</var/lib/lxd>" name="/mnt/test/" pid=2006330 comm="mount.nfs" fstype="nfs" srcname="" flags="rw, relatime"

Hope this will be enough.
So the basic idea would be to just deploy any charm within an LXD and try to mount a NFS share.

Some info:
OS: Ubuntu 16.04.1 (Latest updates on Host and LXD)
LXD: v2.0.8

You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to cinder in Juju Charms Collection.
Matching subscriptions: charm-bugs

  cinder in LXD/LXC Container doesn't support NFS mount

Status in cinder package in Juju Charms Collection:

Bug description:
  Hello there,

  When using cinder within an LXD or LXC Container it isn't possible to mount an NFS share.
  This is blocked by Apparmor. It will raise an error that mount nfs is blocked.

To manage notifications about this bug go to:

More information about the Ubuntu-openstack-bugs mailing list