[lxc-users] apparmor kernel log entries
Mark Chaney
mail at lists.macscr.com
Mon Dec 28 18:50:47 UTC 2015
But this is default on Ubuntu Trusty. I have not enabled anything
special or disabled anything. This should be a supported configuration.
I know nothing about configuring apparmor and a generic doc like that is
not going to help me much.
On 2015-12-28 02:53, Remzi AKYÜZ wrote:
> Hi,
>
> Because of you use apparmor. You can let it.
>
> http://wiki.apparmor.net/index.php/QuickProfileLanguage
>
> 28-12-2015 10:31 tarihinde Mark Chaney yazdı:
>> No one? Im assuming this is because of the check_mk agent that I am
>> runing on my lxc guests, but I obviously want to allow it and no idea
>> why it would be blocked. How can I resolve this?
>>
>> On 2015-12-22 13:03, Mark Chaney wrote:
>>> any suggestions for resolving this warning/error i keep getting on my
>>> lxc host (ubuntu 14.04 lts). All my guests are privileged. I have no
>>> idea what container is even sparking the log entry.
>>>
>>> Dec 22 11:39:04 backup kernel: [498830.030751] type=1400
>>> audit(1450805944.611:17688): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=7448 comm="lsof"
>>> requested_mask="read" denied_mask="read" peer="unconfined"
>>> Dec 22 11:41:22 backup kernel: [498967.665959] type=1400
>>> audit(1450806082.172:17737): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=13992 comm="ps"
>>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>>> Dec 22 11:43:29 backup kernel: [499094.819757] type=1400
>>> audit(1450806209.256:17753): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=18458 comm="ps"
>>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>>> Dec 22 11:45:22 backup kernel: [499207.838369] type=1400
>>> audit(1450806322.216:17754): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=20840 comm="ps"
>>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>>> Dec 22 11:45:22 backup kernel: [499207.839167] type=1400
>>> audit(1450806322.216:17757): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=20840 comm="ps"
>>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>>> Dec 22 11:51:22 backup kernel: [499568.111011] type=1400
>>> audit(1450806682.289:17789): apparmor="DENIED" operation="ptrace"
>>> profile="lxc-container-default" pid=2115 comm="ps"
>>> requested_mask="trace" denied_mask="trace" peer="unconfined"
>>> _______________________________________________
>>> lxc-users mailing list
>>> lxc-users at lists.linuxcontainers.org
>>> http://lists.linuxcontainers.org/listinfo/lxc-users
>>
>> _______________________________________________
>> lxc-users mailing list
>> lxc-users at lists.linuxcontainers.org
>> http://lists.linuxcontainers.org/listinfo/lxc-users
>
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
More information about the lxc-users
mailing list