On Mon, 2024-03-11 at 09:16 -0700, Mike Wright wrote: > On 3/11/24 08:41, Mike Wright wrote: > > On 3/11/24 04:33, Patrick O'Callaghan wrote: > > > On Sun, 2024-03-10 at 22:56 -0700, Mike Wright wrote: > > > > On 3/10/24 15:40, Patrick O'Callaghan wrote: > > > > > On Sun, 2024-03-10 at 11:13 -0700, Mike Wright wrote: > > > > > > The last two lines are key. Add these flags: -F -o > > > > > > logfile. The > > > > > > default loglevel is ERROR. If you want more detail include > > > > > > -l > > > > > > LEVEL. > > > > > > > > > > AFAIK 'apparmor' is a Ubuntu-ism. Both my system and the system > > > in the > > > container are Fedora 39. > > > That one puzzles me, too. However, there is no corresponding > > lxc.selinux setting. lxc was a canonical/ubuntu creation so my > > first > > reaction was the same as yours but from some of the comments I've > > read > > on https://discuss.linuxcontainers.org ( another forum with *lots* > > of > > empty space ) that it or something like it may have been integrated > > into > > lxc. > > CORRECTION: the above paragraph is wrong. > > A much easier to read manpage: > > https://manpages.ubuntu.com/manpages/bionic/en/man5/lxc.container.conf.5.html >
This appears to the manpage at lxc-container.conf(5). > § SELINUX CONTEXT > > lxc.selinux.context > > Specify the SELinux context under which the container should be run > or > unconfined_t. For example > > lxc.selinux.context = system_u:system_r:lxc_t:s0:c22 > I added that to the config file. It made no difference. poc -- _______________________________________________ users mailing list -- users@lists.fedoraproject.org To unsubscribe send an email to users-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
