Hi, intrigeri: > Ivan Sergio Borgonovo: >> As you said probably apparmor seems not to be the culprit.
>> Nov 04 20:21:13 kerberos audit[1280]: AVC apparmor="DENIED" >> operation="mount" info="failed type match" error=-13 >> profile="lxc-container-default-cgns" name="/sys/fs/cgroup/unified/" pid=1280 >> comm="systemd" fstype="cgroup2" srcname="cgroup2" flags="rw, nosuid, nodev, >> noexec" > This one looks like a bug in the LXC AppArmor profiles, please report > it against the lxc package. > [...] > … and many more processes confined under the > lxc-container-default-cgns profile. > Are you actually running dovecot, tor, postgres, sshd, smdb, Postfix, > dhclient etc. in LXC containers? Or is the lxc-container-default-cgns > profile somehow erroneously applied to these processes? Gentle ping on this? Cheers, -- intrigeri
