This happens if the container config doe snot specify mounting /proc,
because there is no (or a wrong) /proc in the container until the
container's init mounts it.
So lxc-attach needs to mount a temporary /proc (after switching
namespaces) for the sake of setting the lsm label.
** Changed in: lxc (Ubuntu)
Status: Incomplete => Triaged
** Summary changed:
- failed to change apparmor profile to lxc-container-default-with-nesting
+ lxc-attach needs to mount a /proc for apparmor's use
** Changed in: lxc (Ubuntu)
Assignee: (unassigned) => Serge Hallyn (serge-hallyn)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1452451
Title:
lxc-attach needs to mount a /proc for apparmor's use
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1452451/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
