[pkg-lxc-devel] Bug#1124515: Namespaces are unavailable for non-root containers
Max Nikulin
manikulin at gmail.com
Fri Jan 2 16:41:10 GMT 2026
On Fri, 2 Jan 2026 11:15:37 +0700 Max Nikulin wrote:
> It seems the fix for #1098521 (0003-apparmor-4x-userns.patch) is
> incomplete and a hunk for config/apparmor/abstractions/container-base
> (without .in) is missed.
[...]
> I have noticed #1111087, but the related merge requests modifies mount
> rules.
I'm sorry, somehow I missed that <https://github.com/lxc/lxc/pull/4598>
from <https://bugs.debian.org/1111087#26> is intended to address
the issue (there was intermittent github failure).
liblxc-common_6.0.4-4+deb13u1_amd64.deb from trixie-proposed-updates has
etc/apparmor.d/abstractions/lxc/container-base with "userns,"
I am not familiar with meson to reason if in some cases
the rule for config/apparmor/abstractions/container-base
(that is present in the repository) may be skipped despite update of
config/apparmor/abstractions/container-base.in. In the case of make,
that relies on timestamps, it may happen after switching between git
branches.
I think, the bug may be closed. Sorry for noise.
More information about the Pkg-lxc-devel
mailing list