[pkg-apparmor] Bug#880502: [pkg-lxc-devel] Bug#880502: lxc: cannot start container with kernel 4.13.10
intrigeri
intrigeri at debian.org
Sun Nov 5 12:09:10 UTC 2017
Hi,
Antonio Terceiro:
> The workaround that works is using the setting in the container
> configuration:
> lxc.aa_profile = unconfined
> with disables apparmor entirely.
> I have just uploaded lxc 1:2.0.9-4 setting this for all containers. This
> is not the greatest solution, but it's also not worse than the state of
> affairs before apparmor was enabled by default in the Debian kernel: it
> was already not possible to use lxc with apparmor in Debian.
Fully agreed: top priority is to ensure AppArmor doesn't break things,
so let's disable any profile that is not ready for prime time.
Adding AppArmor confinement where we had none previously can
come later.
Cheers,
--
intrigeri
More information about the pkg-apparmor-team
mailing list