[Lxc-users] Read-only container /proc

Andreas Laut andreas.laut at spark5.de
Wed Sep 18 13:22:42 UTC 2013 

Ubuntu 13.04 comes with lxc 0.9?
I used same version (from debian testing) on wheezy and I have no 
problem with read only proc.

And my mount options are the same as yours, strange.
lxc.mount.entry                         = proc 
/srv/vserver/vs-db01-dev/rootfs/proc proc nodev,noexec,nosuid,ro 0 0

Regards,
Andreas

Am 18.09.2013 15:15, schrieb Andre Nathan:
> Hello
>
> In Ubuntu 12.04 I used to be able to create containers with this line in
> the container's fstab:
>
> proc /var/lib/lxc/test/rootfs/proc proc ro,nodev,noexec,nosuid 0 0
>
> Now in 13.04 I get the following error:
>
> $ sudo lxc-start -n test -f /var/lib/lxc/test/lxc.conf -lDEBUG -L
> /dev/stdout
> lxc-start: Permission denied - failed to create symlink for kmsg
> lxc-start: failed to setup kmsg for 'test'
> lxc-start: Read-only file system - failed to change apparmor profile to
> unconfined
> lxc-start: invalid sequence number 1. expected 4
> lxc-start: failed to spawn 'test'
>
> This happens even when apparmor is disabled for lxc-start.
>
> Just changing the "ro" to "rw" in fstab allows the container to start.
>
> Is is possible to have a read-only container /proc in newer LXC?
>
> Thanks,
> Andre
>
>
>
> ------------------------------------------------------------------------------
> LIMITED TIME SALE - Full Year of Microsoft Training For Just $49.99!
> 1,500+ hours of tutorials including VisualStudio 2012, Windows 8, SharePoint
> 2013, SQL 2012, MVC 4, more. BEST VALUE: New Multi-Library Power Pack includes
> Mobile, Cloud, Java, and UX Design. Lowest price ever! Ends 9/20/13.
> http://pubads.g.doubleclick.net/gampad/clk?id=58041151&iu=/4140/ostg.clktrk
>
>
> _______________________________________________
> Lxc-users mailing list
> Lxc-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/lxc-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20130918/5161c9f7/attachment.html>

More information about the lxc-users mailing list