[pkg-apparmor] Bug#1050256: autopkgtest fails on debci
Daniel Scharon
daniel.scharon at uni-konstanz.de
Thu Aug 31 12:21:19 BST 2023
Hello everyone,
On Thu, 2023-08-31 at 08:55 +0200, Michael Biebl wrote:
> >
> > What we found so far is, that the AppArmor policy of lxc breaks any
> > systemd service using PrivateNetwork=yes or PrivateIPC=yes when
> > being
> > run under lxc (running under bookworm using the bookworm kernel).
>
>
> I.e. by setting `lxc.apparmor.profile = unconfined` in
> /etc/lxc/default.conf and regenerating the autopkgtest container on
> bookworm, the failures are gone.
>
same case for systemd services using DynamicUser=yes
Kind regards,
Dan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 7513 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-apparmor-team/attachments/20230831/54eac703/attachment.bin>
More information about the pkg-apparmor-team
mailing list