[Bug 1350947] Re: apparmor: no working rule to allow making a mount private

Junien Fridrick 1350947 at bugs.launchpad.net
Wed Jul 29 06:55:37 UTC 2015


Hi Serge, Martin,

As Serge mentioned in #4, this bug will cause breakage if using both "ip
netns" and lxc. As I'm sure you're aware, the OpenStack neutron/quantum
gateway makes heavy use of the "ip netns" feature, and it's valid to
have LXC containers on the server hosting tje quantum gateway.

Given this setup, adding a container to the server hosting the quantum
gateway breaks the netns for the DHCP and L3 agents, which leads to all
sorts of fun.

So, does it make sense to backport this fix to trusty ? If not, then is
manually applying https://github.com/lxc/lxc/pull/393/files a valid
workaround ?

Thanks !

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1350947

Title:
  apparmor: no working rule to allow making a mount private

To manage notifications about this bug go to:
https://bugs.launchpad.net/apparmor/+bug/1350947/+subscriptions



More information about the Ubuntu-server-bugs mailing list