[lxc-users] lxc 1.0.7 does not ship /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load on trusty
Serge Hallyn
serge.hallyn at ubuntu.com
Tue Sep 15 23:04:00 UTC 2015
Quoting Stéphane Graber (stgraber at ubuntu.com):
> Hi Serge,
>
> What do you see calling lxc-apparmor-load in the stable-1.0 LXC?
>
> As far as I can tell, lxc-apparmor-load doesn't exist nor is referenced
> anywhere in the stable-1.0 branch.
/etc/init/lxc.conf was calling it. (guarded under test -x so
there was no warning about it not existing)
> On Tue, Sep 15, 2015 at 10:24:50PM +0000, Serge Hallyn wrote:
> > Ok I've got a vm running 1.0.7+stable~20150828-2252-0ubuntu1~trusty
> >
> > It doesn't have /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load. But
> > /etc/init/lxc.conf calls /lib/apparmor/profile-load. Which... also
> > doesn't exist.
> >
> > Oddly, profiles are still being loaded. I guess the /etc/apparmor.d/lxc-containers
> > file ensures that anything under /etc/apparmor.d/lxc/ gets loaded at
> > boot. But 'stop lxc; start lxc' doesn't cause those to get loaded.
> >
> > So Stéphane there does appear to be a bug in the packaging for that ppa
> > version. It should be shipping lxc-apparmor-load. I dunno where the packaging
> > for stable ppas gets stored...
> >
> > Ranjib, you mention the newer script /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load,
> > did you mention that one becuase newer upstream ships it, or does it
> > actually appear to be getting called somewhere in the ppa version?
> >
> > -serge
> >
> > Quoting Ranjib Dey (dey.ranjib at gmail.com):
> > > lxc-git-stable-1.0 ppa, i had installed it after lxc stopped working due to
> > > sysfs mounting failure, after you sent out the email to test before 1.07
> > > in this list
> > >
> > > On Tue, Sep 15, 2015 at 10:44 AM, Serge Hallyn <serge.hallyn at ubuntu.com>
> > > wrote:
> > >
> > > > Quoting Ranjib Dey (dey.ranjib at gmail.com):
> > > > > im seeing some failures of lxc-start due to missing apparmor profiles.
> > > > lxc
> > > > > package does not ship /usr/lib/x86_64-linux-gnu/lxc/lxc-apparmor-load,
> > > > > which in turn responsible for the missing apparmor profiles (validated
> > > > by
> > > > > the lxc-start log and aa-status)
> > > > >
> > > > > lxc-version: 1.0.7+stable~20150828-2252-0ubuntu
> > > >
> > > > Sorry - where did this package version come from?
> > > >
> > > > The helper was introduced by commit
> > > > 2b24e2ff84c03a1e049449127958df8dc16a74fd so
> > > > you can grab it yourself from git if you need.
> > > >
> > > > > distro: ubuntu - trusty
> > > > > kernel: 3.19.0-28
> > > > >
> > > > > i had to upgrade the kernel to vivid lts for sysfs related bug
> > > > >
> > > > > regards
> > > > > ranjib
> > > >
> > > > > _______________________________________________
> > > > > lxc-users mailing list
> > > > > lxc-users at lists.linuxcontainers.org
> > > > > http://lists.linuxcontainers.org/listinfo/lxc-users
> > > >
> > > > _______________________________________________
> > > > lxc-users mailing list
> > > > lxc-users at lists.linuxcontainers.org
> > > > http://lists.linuxcontainers.org/listinfo/lxc-users
> >
> > > _______________________________________________
> > > lxc-users mailing list
> > > lxc-users at lists.linuxcontainers.org
> > > http://lists.linuxcontainers.org/listinfo/lxc-users
> >
> > _______________________________________________
> > lxc-users mailing list
> > lxc-users at lists.linuxcontainers.org
> > http://lists.linuxcontainers.org/listinfo/lxc-users
>
> --
> Stéphane Graber
> Ubuntu developer
> http://www.ubuntu.com
> _______________________________________________
> lxc-users mailing list
> lxc-users at lists.linuxcontainers.org
> http://lists.linuxcontainers.org/listinfo/lxc-users
More information about the lxc-users
mailing list