[Touch-packages] [Bug 1452451] Re: lxc-attach needs to mount a /proc for apparmor's use
** Changed in: lxc (Ubuntu) Status: Triaged => Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1452451 Title: lxc-attach needs to mount a /proc for apparmor's use Status in lxc package in Ubuntu: Fix Released Bug description: I develop and maintain the unity8-lxc package (lp:unity8-preview-lxc) which uses an unpacked Ubuntu Next Desktop ISO as a privileged rootfs. It uses the lxc-container-default-with-nesting apparmor profile since we'd like to support containers within this. When I try to do a lxc-start. lxc-wait(RUNNING), and lxc-attach for the first time in my setup script, I get the following error: lxc_container: lsm/apparmor.c: apparmor_process_label_set: 183 No such file or directory - failed to change apparmor profile to lxc- container-default-with-nesting I believe this is a race because if I introduce a sleep of say 0.5 seconds between the lxc-wait and lxc-attach, then it works. It also works for any subsequent lxc-start/lxc-wait/lxc-attach after this failure. Please let me know if I can provide more info. ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: lxc 1.1.2-0ubuntu3 ProcVersionSignature: Ubuntu 3.19.0-16.16-generic 3.19.3 Uname: Linux 3.19.0-16-generic x86_64 ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 CurrentDesktop: Unity Date: Wed May 6 16:47:14 2015 InstallationDate: Installed on 2013-03-18 (779 days ago) InstallationMedia: Ubuntu 12.10 "Quantal Quetzal" - Release amd64 (20121017.5) SourcePackage: lxc UpgradeStatus: Upgraded to vivid on 2014-10-20 (198 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1452451/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452451] Re: lxc-attach needs to mount a /proc for apparmor's use
Thanks again for opening this bug. A candidate fix has been sent to the lxc-devel mailing list. The workaround is to make sure that the lxc configuration mounts a procfs for the container, using either a lxc.mount.entry or lxc.mount.auto. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1452451 Title: lxc-attach needs to mount a /proc for apparmor's use Status in lxc package in Ubuntu: Triaged Bug description: I develop and maintain the unity8-lxc package (lp:unity8-preview-lxc) which uses an unpacked Ubuntu Next Desktop ISO as a privileged rootfs. It uses the lxc-container-default-with-nesting apparmor profile since we'd like to support containers within this. When I try to do a lxc-start. lxc-wait(RUNNING), and lxc-attach for the first time in my setup script, I get the following error: lxc_container: lsm/apparmor.c: apparmor_process_label_set: 183 No such file or directory - failed to change apparmor profile to lxc- container-default-with-nesting I believe this is a race because if I introduce a sleep of say 0.5 seconds between the lxc-wait and lxc-attach, then it works. It also works for any subsequent lxc-start/lxc-wait/lxc-attach after this failure. Please let me know if I can provide more info. ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: lxc 1.1.2-0ubuntu3 ProcVersionSignature: Ubuntu 3.19.0-16.16-generic 3.19.3 Uname: Linux 3.19.0-16-generic x86_64 ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 CurrentDesktop: Unity Date: Wed May 6 16:47:14 2015 InstallationDate: Installed on 2013-03-18 (779 days ago) InstallationMedia: Ubuntu 12.10 Quantal Quetzal - Release amd64 (20121017.5) SourcePackage: lxc UpgradeStatus: Upgraded to vivid on 2014-10-20 (198 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1452451/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
