[lxc-users] Fedora container thinks it is not running
Michael H. Warfield
mhw at WittsEnd.com
Mon May 26 15:22:26 UTC 2014
Serge,
On Thu, 2014-05-15 at 15:31 +0000, Serge Hallyn wrote:
> Quoting Michael H. Warfield (mhw at WittsEnd.com):
> > On Thu, 2014-05-15 at 22:04 +0700, Fajar A. Nugraha wrote:
[SNIP]
> > > With the unconfied apparmor profile, it works as expected
> > >
> > >
> > > ####
> > > # lxc-ls -f f20
> > > NAME STATE IPV4 IPV6 AUTOSTART
> > > ------------------------------------------
> > > f20 RUNNING 10.0.3.205 - NO
> > > ####
> >
> > Nice catch! I wonder if there is some way I can automate that in the
> What exactly is systemd doing at that spot? (I suppose I shoudl go look
> at git, but figure maybe you know offhand) Perhaps it's something we can
> add unconditionally to the apparmor profile.
This came up again in another thread. It's interesting that,
apparently, this didn't cause the same problems with Fedora 19
containers, which was still systemd, but is causing a SEGV from systemd
with Fedora 20 containers. They've changed something.
In any case, I did set that aa_profile option to unconfined on my Fedora
20 host and it seems to simply be ignored. Any heartburn if I make that
the default for Fedora and CentOS containers by incorporating it into
the common config files?
> > template. I would hate to say "if on Ubuntu" but maybe "with apparmor".
> > Maybe that should be the default in that config and just ignored where
> > apparmor isn't used.
Regards,
Mike
--
Michael H. Warfield (AI4NB) | (770) 978-7061 | mhw at WittsEnd.com
/\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0x674627FF | possible worlds. A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 482 bytes
Desc: This is a digitally signed message part
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20140526/cc9af300/attachment.sig>
More information about the lxc-users
mailing list