[Lxc-users] Read-only container /proc
Andre Nathan
andre at digirati.com.br
Wed Sep 18 13:15:36 UTC 2013
Hello
In Ubuntu 12.04 I used to be able to create containers with this line in
the container's fstab:
proc /var/lib/lxc/test/rootfs/proc proc ro,nodev,noexec,nosuid 0 0
Now in 13.04 I get the following error:
$ sudo lxc-start -n test -f /var/lib/lxc/test/lxc.conf -lDEBUG -L
/dev/stdout
lxc-start: Permission denied - failed to create symlink for kmsg
lxc-start: failed to setup kmsg for 'test'
lxc-start: Read-only file system - failed to change apparmor profile to
unconfined
lxc-start: invalid sequence number 1. expected 4
lxc-start: failed to spawn 'test'
This happens even when apparmor is disabled for lxc-start.
Just changing the "ro" to "rw" in fstab allows the container to start.
Is is possible to have a read-only container /proc in newer LXC?
Thanks,
Andre
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 555 bytes
Desc: OpenPGP digital signature
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20130918/f49f9303/attachment.pgp>
More information about the lxc-users
mailing list