| 2012-05-03 03:15:54 |
Andrew Cowie |
bug |
|
|
added bug |
| 2012-05-03 03:16:37 |
Andrew Cowie |
tags |
|
precise |
|
| 2012-05-03 12:50:00 |
Serge Hallyn |
marked as duplicate |
|
981955 |
|
| 2012-05-03 15:23:58 |
Serge Hallyn |
removed duplicate marker |
981955 |
|
|
| 2012-05-03 15:24:22 |
Serge Hallyn |
summary |
apparmor preventing lxc-execute from running |
Add a lxc-execute profile (apparmor preventing lxc-execute from running) |
|
| 2012-05-03 15:24:38 |
Serge Hallyn |
lxc (Ubuntu): status |
New |
Confirmed |
|
| 2012-05-03 15:24:41 |
Serge Hallyn |
lxc (Ubuntu): importance |
Undecided |
Medium |
|
| 2012-05-04 09:41:50 |
Stuart Metcalfe |
bug |
|
|
added subscriber Stuart Metcalfe |
| 2012-05-07 15:17:17 |
Serge Hallyn |
lxc (Ubuntu): assignee |
|
Serge Hallyn (serge-hallyn) |
|
| 2012-05-07 15:17:41 |
Serge Hallyn |
summary |
Add a lxc-execute profile (apparmor preventing lxc-execute from running) |
Fix lxc-execute without rootfs failing apparmor transitions |
|
| 2012-05-07 15:17:55 |
Serge Hallyn |
tags |
precise |
needssru precise |
|
| 2012-05-07 15:18:04 |
Serge Hallyn |
nominated for series |
|
Ubuntu Precise |
|
| 2012-05-07 15:18:04 |
Serge Hallyn |
bug task added |
|
lxc (Ubuntu Precise) |
|
| 2012-05-07 15:18:04 |
Serge Hallyn |
nominated for series |
|
Ubuntu Quantal |
|
| 2012-05-07 15:18:04 |
Serge Hallyn |
bug task added |
|
lxc (Ubuntu Quantal) |
|
| 2012-05-07 22:05:13 |
Launchpad Janitor |
lxc (Ubuntu Quantal): status |
Confirmed |
Fix Released |
|
| 2012-05-07 22:39:17 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/lxc |
|
| 2012-05-07 22:56:39 |
Serge Hallyn |
description |
On a Precise system, LXC is no longer working:
# lxc-execute -n foo /bin/bash
lxc-execute: Permission denied - failed to change apparmor profile to lxc-container-default
lxc-execute: invalid sequence number 1. expected 2
lxc-execute: failed to spawn 'foo'
#
At a minimum, I'm guessing lxc-execute needs a profile similar to lxc-start, but trying to run lxc-start failed with the same error.
AfC |
=================================
SRU Justification:
1. impact: lxc-execute fails when apparmor transition is requested (as it is by default)
2. development fix: make sure the container's own proc is mounted before attempting apparmor context transition
3. stable fix: same as development fix
4. test case:
lxc-execute -n foo /bin/bash
5. Regression potential: apparmor transitions could break for containers if this is done wrong. However, the lxc testsuite passed with these patches
==================================
On a Precise system, LXC is no longer working:
# lxc-execute -n foo /bin/bash
lxc-execute: Permission denied - failed to change apparmor profile to lxc-container-default
lxc-execute: invalid sequence number 1. expected 2
lxc-execute: failed to spawn 'foo'
#
At a minimum, I'm guessing lxc-execute needs a profile similar to lxc-start, but trying to run lxc-start failed with the same error.
AfC |
|
| 2012-05-08 00:55:59 |
Serge Hallyn |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
| 2012-05-08 05:28:00 |
Launchpad Janitor |
lxc (Ubuntu Precise): status |
New |
Confirmed |
|
| 2012-05-12 00:06:55 |
Martin Pitt |
lxc (Ubuntu Precise): status |
Confirmed |
Fix Committed |
|
| 2012-05-12 00:06:58 |
Martin Pitt |
bug |
|
|
added subscriber SRU Verification |
| 2012-05-12 00:07:05 |
Martin Pitt |
tags |
needssru precise |
needssru precise verification-needed |
|
| 2012-05-14 19:00:47 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/precise-proposed/lxc |
|
| 2012-05-16 14:21:31 |
Andrew Cowie |
lxc (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2012-05-17 14:36:14 |
Stéphane Graber |
lxc (Ubuntu Precise): status |
Fix Released |
Fix Committed |
|
| 2012-05-17 14:36:22 |
Stéphane Graber |
tags |
needssru precise verification-needed |
needssru precise verification-done |
|
| 2012-05-23 00:24:09 |
Launchpad Janitor |
lxc (Ubuntu Precise): status |
Fix Committed |
Fix Released |
|
| 2012-06-11 14:08:00 |
Serge Hallyn |
tags |
needssru precise verification-done |
precise verification-done |
|
