[lxc-users] apparmor kernel log entries
Remzi AKYÜZ
linuxliste at gmail.com
Mon Dec 28 08:53:50 UTC 2015
Hi,
Because of you use apparmor. You can let it.
http://wiki.apparmor.net/index.php/QuickProfileLanguage
28-12-2015 10:31 tarihinde Mark Chaney yazdı:
> No one? Im assuming this is because of the check_mk agent that I am
> runing on my lxc guests, but I obviously want to allow it and no idea
> why it would be blocked. How can I resolve this?
>
> On 2015-12-22 13:03, Mark Chaney wrote:
>> any suggestions for resolving this warning/error i keep getting on my
>> lxc host (ubuntu 14.04 lts). All my guests are privileged. I have no
>> idea what container is even sparking the log entry.
>>
>> Dec 22 11:39:04 backup kernel: [498830.030751] type=1400
>> audit(1450805944.611:17688): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=7448 comm="lsof"
>> requested_mask="read" denied_mask="read" peer="unconfined"
>> Dec 22 11:41:22 backup kernel: [498967.665959] type=1400
>> audit(1450806082.172:17737): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=13992 comm="ps"
>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>> Dec 22 11:43:29 backup kernel: [499094.819757] type=1400
>> audit(1450806209.256:17753): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=18458 comm="ps"
>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>> Dec 22 11:45:22 backup kernel: [499207.838369] type=1400
>> audit(1450806322.216:17754): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=20840 comm="ps"
>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>> Dec 22 11:45:22 backup kernel: [499207.839167] type=1400
>> audit(1450806322.216:17757): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=20840 comm="ps"
>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>> Dec 22 11:51:22 backup kernel: [499568.111011] type=1400
>> audit(1450806682.289:17789): apparmor="DENIED" operation="ptrace"
>> profile="lxc-container-default" pid=2115 comm="ps"
>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>> _______________________________________________
>> lxc-users mailing list
>> lxc-users at lists.linuxcontainers.org
>> http://lists.linuxcontainers.org/listinfo/lxc-users
>
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
More information about the lxc-users
mailing list