[lxc-users] lxc 1.0.7 does not ship /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load on trusty
Stéphane Graber
stgraber at ubuntu.com
Tue Sep 15 22:45:14 UTC 2015
Hi Serge,
What do you see calling lxc-apparmor-load in the stable-1.0 LXC?
As far as I can tell, lxc-apparmor-load doesn't exist nor is referenced
anywhere in the stable-1.0 branch.
On Tue, Sep 15, 2015 at 10:24:50PM +0000, Serge Hallyn wrote:
> Ok I've got a vm running 1.0.7+stable~20150828-2252-0ubuntu1~trusty
>
> It doesn't have /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load. But
> /etc/init/lxc.conf calls /lib/apparmor/profile-load. Which... also
> doesn't exist.
>
> Oddly, profiles are still being loaded. I guess the /etc/apparmor.d/lxc-containers
> file ensures that anything under /etc/apparmor.d/lxc/ gets loaded at
> boot. But 'stop lxc; start lxc' doesn't cause those to get loaded.
>
> So Stéphane there does appear to be a bug in the packaging for that ppa
> version. It should be shipping lxc-apparmor-load. I dunno where the packaging
> for stable ppas gets stored...
>
> Ranjib, you mention the newer script /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load,
> did you mention that one becuase newer upstream ships it, or does it
> actually appear to be getting called somewhere in the ppa version?
>
> -serge
>
> Quoting Ranjib Dey (dey.ranjib at gmail.com):
> > lxc-git-stable-1.0 ppa, i had installed it after lxc stopped working due to
> > sysfs mounting failure, after you sent out the email to test before 1.07
> > in this list
> >
> > On Tue, Sep 15, 2015 at 10:44 AM, Serge Hallyn <serge.hallyn at ubuntu.com>
> > wrote:
> >
> > > Quoting Ranjib Dey (dey.ranjib at gmail.com):
> > > > im seeing some failures of lxc-start due to missing apparmor profiles.
> > > lxc
> > > > package does not ship /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load,
> > > > which in turn responsible for the missing apparmor profiles (validated
> > > by
> > > > the lxc-start log and aa-status)
> > > >
> > > > lxc-version: 1.0.7+stable~20150828-2252-0ubuntu
> > >
> > > Sorry - where did this package version come from?
> > >
> > > The helper was introduced by commit
> > > 2b24e2ff84c03a1e049449127958df8dc16a74fd so
> > > you can grab it yourself from git if you need.
> > >
> > > > distro: ubuntu - trusty
> > > > kernel: 3.19.0-28
> > > >
> > > > i had to upgrade the kernel to vivid lts for sysfs related bug
> > > >
> > > > regards
> > > > ranjib
> > >
> > > > _______________________________________________
> > > > lxc-users mailing list
> > > > lxc-users at lists.linuxcontainers.org
> > > > http://lists.linuxcontainers.org/listinfo/lxc-users
> > >
> > > _______________________________________________
> > > lxc-users mailing list
> > > lxc-users at lists.linuxcontainers.org
> > > http://lists.linuxcontainers.org/listinfo/lxc-users
>
> > _______________________________________________
> > lxc-users mailing list
> > lxc-users at lists.linuxcontainers.org
> > http://lists.linuxcontainers.org/listinfo/lxc-users
>
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
--
Stéphane Graber
Ubuntu developer
http://www.ubuntu.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20150915/aaadc0e0/attachment.sig>
More information about the lxc-users
mailing list