[Bug 987371] [NEW] unconfined containers are not starting
Serge Hallyn
987371 at bugs.launchpad.net
Mon Apr 23 15:44:00 UTC 2012
Public bug reported:
lxc-create -t ubuntu -n p1
lxc-start -n p1
That works.
Uncomment the 'lxc.aa_profile = unconfined' in /var/lib/lxc/p1/config,
and now
lxc-start -n p1
does not work.
The relevant code in src/lxc/start.c does:
if (aa_change_profile(handler->conf->aa_profile) < 0) {
SYSERROR("failed to change apparmor profile to %s", handler->conf->aa_profile);
return -1;
}
By default (when it works), hander->conf->aa_profile is set to
lxc-container-default
** Affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
** Affects: lxc (Ubuntu)
Importance: Critical
Status: Confirmed
** Changed in: lxc (Ubuntu)
Status: New => Confirmed
** Changed in: lxc (Ubuntu)
Importance: Undecided => Critical
** Also affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/987371
Title:
unconfined containers are not starting
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions
More information about the Ubuntu-server-bugs
mailing list