[Bug 2087755] [NEW] lxc-start will not start noble container

Sat, 09 Nov 2024 13:30:41 -0800 

Public bug reported:

lxc-create does not create a container that will work with lxc-start.

I have created noble 24.04 container with the following command:
lxc-create -B dir -t download -n noble-simple -- -d ubuntu -r noble -a amd64

then try to start the container running using:
lxc-start noble-simple --logfile /tmp/log.out --logpriority=info

It does not start:
root@srv:~# lxc-ls -f simple
NAME         STATE   AUTOSTART GROUPS IPV4 IPV6 UNPRIVILEGED 
noble-simple STOPPED 0         -      -    -    false        

If I add the following to the config file it works:
lxc.apparmor.profile = unconfined


lxc-ls -f simple
NAME         STATE   AUTOSTART GROUPS IPV4            IPV6 UNPRIVILEGED 
noble-simple RUNNING 0         -      192.168.204.251 -    false

I think the is security problem because using unconfined is removing
apparmor protection from the container

also should not have to modify the config file for a simple lxc-create
it should just work

ProblemType: Bug
DistroRelease: Ubuntu 24.04
Package: lxc 1:5.0.3-2ubuntu7
ProcVersionSignature: Ubuntu 6.8.0-48.48-generic 6.8.12
Uname: Linux 6.8.0-48-generic x86_64
ApportVersion: 2.28.1-0ubuntu3.1
Architecture: amd64
CasperMD5CheckResult: unknown
Date: Sat Nov  9 15:57:58 2024
InstallationDate: Installed on 2014-08-19 (3735 days ago)
InstallationMedia: Ubuntu-Server 14.04.1 LTS "Trusty Tahr" - Release amd64 
(20140722.3)
ProcEnviron:
 LANG=en_US.UTF-8
 PATH=(custom, no user)
 SHELL=/bin/bash
 TERM=xterm-256color
 XDG_RUNTIME_DIR=<set>
SourcePackage: lxc
UpgradeStatus: Upgraded to noble on 2024-11-05 (4 days ago)
mtime.conffile..etc.default.lxc-net: 2024-11-04T23:19:17.843966
mtime.conffile..etc.init.d.apport: 2024-07-22T10:59:07
mtime.conffile..etc.lxc.default.conf: 2024-11-04T23:19:17.859965

** Affects: lxc (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug noble

** Attachment added: "config file that does not work"
   
https://bugs.launchpad.net/bugs/2087755/+attachment/5835971/+files/config.nostart

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2087755

Title:
  lxc-start will not start noble container

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/2087755/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to