[Bug 987371] Re: unconfined containers are not starting
** Changed in: lxc (Ubuntu Precise) Status: New => Invalid ** Changed in: apparmor (Ubuntu Precise) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
** Branch linked: lp:ubuntu/precise-proposed/linux-armadaxp -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
This bug was fixed in the package linux - 3.2.0-25.40 --- linux (3.2.0-25.40) precise-proposed; urgency=low [Luis Henriques] * Release Tracking Bug - LP: #1003534 [ Andy Whitcroft ] * [Config] control.stub is an intermediate product not a dependancy - LP: #992414 * [Config] include include/generated/compile.h - LP: #942569 [ Dave Martin ] * SAUCE: rtc: pl031: Enable module alias autogeneration for AMBA drivers - LP: #1000831 [ Herton Ronaldo Krzesinski ] * Revert "SAUCE: ite-cir: postpone ISR registration" - LP: #1002484 * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ Ike Panhc ] * [Config] add highbank flavour - LP: #1000831 [ John Johansen ] * SAUCE: apparmor: fix long path failure due to disconnected path - LP: #955892 * SAUCE: apparmor: fix profile lookup for unconfined - LP: #978038, #987371 [ Mark Langsdorf ] * SAUCE: arm highbank: add support for pl320-ipc driver - LP: #1000831 [ Rob Herring ] * SAUCE: input: add a key driver for highbank - LP: #1000831 * SAUCE: ARM: highbank: Add smc calls to enable/disable the L2 - LP: #1000831 * SAUCE: force DMA buffers to non-bufferable on highbank - LP: #1000831 * SAUCE: net: calxedaxgmac: fix net timeout recovery - LP: #1000831 [ Tim Gardner ] * [Config] perarch and indep tools builds need separate build directories * [Config] CONFIG_XEN_ACPI_PROCESSOR=y - LP: #898112 [ Upstream Kernel Changes ] * Revert "autofs: work around unhappy compat problem on x86-64" - LP: #1002482 * Input: wacom - cleanup feature report for bamboos - LP: #568064 * Input: wacom - remove unused bamboo HID parsing - LP: #568064 * Input: wacom - add some comments to wacom_parse_hid - LP: #568064 * Input: wacom - relax Bamboo stylus ID check - LP: #568064 * Input: wacom - read 3rd gen Bamboo Touch HID data - LP: #568064 * Input: wacom - 3rd gen Bamboo P&Touch packet support - LP: #568064 * Input: wacom - ignore unwanted bamboo packets - LP: #568064 * HID: wacom: Move parsing to a separate function - LP: #568064 * HID: wacom: Initial driver for Wacom Intuos4 Wireless (Bluetooth) - LP: #568064 * Input: wacom - add support for Cintiq 24HD - LP: #568064 * Input: wacom - add LED support for Cintiq 24HD - LP: #568064 * Input: wacom - add missing LEDS_CLASS to Kconfig - LP: #568064 * Input: wacom - fix 3rd-gen Bamboo MT when 4+ fingers are in use - LP: #568064 * power_supply: allow a power supply to explicitly point to powered device - LP: #568064 * power_supply: add "powers" links to self-powered HID devices - LP: #568064 * HID: wiimote: fix invalid power_supply_powers call - LP: #568064 * HID: wacom: Fix invalid power_supply_powers calls - LP: #568064 * ARM: 7178/1: fault.c: Port OOM changes into do_page_fault - LP: #951043 * ARM: 7368/1: fault.c: correct how the tsk->[maj|min]_flt gets incremented - LP: #951043 * hugepages: fix use after free bug in "quota" handling - LP: #990368 - CVE-2012-2133 * provide disable_cpufreq() function to disable the API. - LP: #898112 * xen/acpi-processor: C and P-state driver that uploads said data to hypervisor. - LP: #898112 * xen/acpi-processor: Do not depend on CPU frequency scaling drivers. - LP: #898112 * xen/acpi: Fix Kconfig dependency on CPU_FREQ - LP: #898112 * xen/acpi: Remove the WARN's as they just create noise. - LP: #898112 * xen/cpufreq: Disable the cpu frequency scaling drivers from loading. - LP: #898112 * xen/apic: Return the APIC ID (and version) for CPU 0. - LP: #898112 * ARM: highbank: add xgmac ethernet devices to dts - LP: #1000831 * net: add calxeda xgmac ethernet driver - LP: #1000831 * ARM: versatile: Add missing ENDPROC to headsmp.S - LP: #1000831 * ARM: msm: Add missing ENDPROC to headsmp.S - LP: #1000831 * ARM: ux500: add missing ENDPROC to headsmp.S - LP: #1000831 * ARM: exynos: remove incorrect BSYM usage - LP: #1000831 * ARM: imx: remove incorrect BSYM usage - LP: #1000831 * ARM: highbank: remove incorrect BSYM usage - LP: #1000831 * ARM: make BSYM macro assembly only - LP: #1000831 * ARM: amba: Auto-generate AMBA driver module aliases during modpost - LP: #1000831 * ARM: amba: Move definition of struct amba_id to mod_devicetable.h - LP: #1000831 * dmaengine: pl330: Enable module alias autogeneration for AMBA drivers - LP: #1000831 * crypto: sha512 - Fix byte counter overflow in SHA-512 - LP: #1002482 * ALSA: hda/conexant - Don't set HP pin-control bit unconditionally - LP: #1002482 * ALSA: hda/conexant - Set up the missing docking-station pins - LP: #1002482 * ARM: clps711x: serial driver hungs are a result of call disable_irq within ISR - LP: #1002482 * ARM: OMAP1: DMTIMER: fix broken
[Bug 987371] Re: unconfined containers are not starting
** Branch linked: lp:ubuntu/precise-proposed/linux-ti-omap4 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
Confirmed on a precise VM, lxc.aa_profile = unconfined now works as expected. Testing a few other containers I couldn't spot any obvious regression. ** Tags removed: verification-needed-precise ** Tags added: verification-done-precise -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
This bug is awaiting verification that the kernel for precise in -proposed solves the problem (3.2.0-25.40). Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed-precise' to 'verification-done-precise'. If verification is not done by one week from today, this fix will be dropped from the source code, and this bug will be closed. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you! ** Tags added: verification-needed-precise -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
This bug was fixed in the package linux - 3.4.0-3.8 --- linux (3.4.0-3.8) quantal; urgency=low [ Andy Whitcroft ] * [Config] include include/generated/compile.h - LP: #942569 * [Config] fix up postinst to ensure we know which error is which - LP: #1002388 [ Herton Ronaldo Krzesinski ] * SAUCE: async_populate_rootfs: fix build warnings - LP: #1003417 [ John Johansen ] * Revert "SAUCE: AppArmor: Add the ability to mediate mount" * SAUCE: apparmor: Add the ability to mediate mount * SAUCE: AppArmor: basic networking rules * SAUCE: apparmor: fix profile lookup for unconfined - LP: #978038, #987371 * SAUCE: apparmor: fix long path failure due to disconnected path - LP: #955892 [ Mario Limonciello ] * SAUCE: dell-laptop: rfkill blacklist Dell XPS 13z, 15 - LP: #901410 [ Stefan Bader ] * (config) Built-in xen-acpi-processor [ Tim Gardner ] * [Config] CONFIG_NET_DSA=m - LP: #1004148 * [Config] Ensure CONFIG_XEN_ACPI_PROCESSOR=y for amd64 -- Leann OgasawaraFri, 25 May 2012 11:38:33 -0700 ** Changed in: linux (Ubuntu Quantal) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
** Also affects: apparmor (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: lxc (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: apparmor (Ubuntu Quantal) Importance: Undecided Status: Invalid ** Also affects: linux (Ubuntu Quantal) Importance: Undecided Status: Fix Committed ** Also affects: lxc (Ubuntu Quantal) Importance: Critical Status: Invalid ** Changed in: linux (Ubuntu Precise) Status: New => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
My mistake, it is working to switch to different containers. I think I just hadn't actually reloaded my apparmor profiles when I tried using the one I had just created. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
@Christopher, To support switching to any other profile than unconfined or "lxc-*", you need to add a transition rule to /etc/apparmor.d/local/usr.bin.lxc- start (see /etc/apparmor.d/usr.bin.lxc-start for the default profile). If you still have trouble, please open a new bug, showing the relevant profiles and 'sudo aa-status' output, plus the file 'outout' resulting from doing 'lxc-start -n -l DEBUG -o outout'. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
It looks like this bug prevents switching to ANY profile, not just unconfined. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
That kernel fixes it, thanks. ** Changed in: linux (Ubuntu) Status: Incomplete => Fix Committed ** Changed in: apparmor (Ubuntu) Status: New => Invalid ** Changed in: lxc (Ubuntu) Status: Confirmed => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
** Also affects: linux (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
I have a test kernel at http://people.canonical.com/~jj/linux- image-3.2.0-23-generic_3.2.0-23.36~aa_amd64.deb and believe this to be the same as Bug #978038 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 987371] Re: unconfined containers are not starting
Sorry, the relevant error message is: lxc-start: No such file or directory - failed to change apparmor profile to unconfined -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/987371 Title: unconfined containers are not starting To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/987371/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs