apparmor should allow mounting /proc and /sys
Bug #1010598 reported by
Serge Hallyn
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| lxc (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
| Precise |
Fix Released
|
Undecided
|
Unassigned | ||
| Quantal |
Fix Released
|
High
|
Unassigned | ||
Bug Description
The apparmor policy should allow (very specifically) mounting procfs to /proc, and sysfs to /sys. Otherwise preexisting containers may break.
| Changed in lxc (Ubuntu): | |
| status: | New → Triaged |
| importance: | Undecided → High |
Revision history for this message
| Serge Hallyn (serge-hallyn) wrote | #1 |
| Changed in lxc (Ubuntu Quantal): | |
| status: | Triaged → Fix Released |
| Changed in lxc (Ubuntu Precise): | |
| status: | New → Fix Released |
To post a comment you must log in.
Actually, the policy already does allow this:
mount fstype=proc -> /proc/,
mount fstype=sysfs -> /sys/,
@janevert,
please open a new bug about your problem. Please do a 'lxc-start -n containername -l trace -o outout', and attach the file 'outout' to the bug.