Don't require use of mediate_deleted with LXC (was: apparmor prevents dpkg-divert and localedef from working in a container)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
AppArmor |
Confirmed
|
Medium
|
Unassigned | ||
apparmor (Ubuntu) |
Confirmed
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
linux (Ubuntu) |
Confirmed
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
lxc (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
I moved the daily flavour upgrade testing to a container but it's now failing when running ubuntu-vm-builder, here are the entries from dmesg:
[ 2038.491817] type=1400 audit(133311965
[ 2149.277909] type=1400 audit(133311977
[ 2263.501949] type=1400 audit(133311988
[ 2264.736948] type=1400 audit(133311988
[ 2367.429100] type=1400 audit(133311998
The apparmor profile used for this container is attached.
Related branches
tags: | added: rls-mgr-p-tracking |
tags: | added: aa-feature |
Changed in apparmor (Ubuntu): | |
importance: | Undecided → Medium |
summary: |
- apparmor prevents dpkg-divert and localedef from working in a container + Don't require use of mediate_deleted with LXC (was: apparmor prevents + dpkg-divert and localedef from working in a container) |
Changed in apparmor: | |
importance: | Undecided → Medium |
status: | New → Confirmed |
tags: | added: aa-kernel |
Changed in linux (Ubuntu Precise): | |
status: | New → Won't Fix |
Changed in linux (Ubuntu): | |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in apparmor (Ubuntu): | |
milestone: | ubuntu-12.04 → none |
Reason for critical is that it's making random commands in container fail.
We've already got a few bug reports against udev, postgresql, ... all caused by that issue.