On Wed, 2 Aug 2023 17:05:18 +0100 Simon McVittie wrote:
Control: retitle -1 systemd: service with PrivateNetwork=yes fails inside lxc
container on bookworm
On Wed, 02 Aug 2023 at 17:53:30 +0200, Michael Biebl wrote:
> Ok, I can reproduce the issue in a bookworm test VM.
> Upgrading that VM to trixie the issue appears to be gone.
Retitling to reflect that. I think this is still going to be
a practical problem for the autopkgtests of packages like polkitd,
because ci.debian.net runs on stable.
I've been approaching this from a different angle via
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1050256
From what I could gather so far, this is basically an AppArmor issue
and needs to be addressed in the kernel and/or apparmor and/or lxc.
Regards,
Michael
OpenPGP_signature.asc
Description: OpenPGP digital signature