[pkg-lxc-devel] Bug#1052934: plocate: Error running inside LXC container using systemd service (timer) with PrivateNetwork=true set
Mathias Gibbens
gibmat at debian.org
Wed Sep 27 00:07:16 BST 2023
Control: tags -1 + confirmed
Hi Alastair and Steinar,
The root cause of this issue was found to be a bug in apparmor that
was fixed in kernel 6.2, but not yet backported to the 6.1 LTS tree for
bookworm. Lots of details are in bug #1050256. For now I won't reassign
this to src:linux, so hopefully it's easier to find by anyone else who
runs into the issue. I also updated the LXC/LXD wiki.d.o pages.
For now, possible workarounds include modifying the service
definitions, installing a kernel from bookworm-backports on the host,
or disabling apparmor protections for the container.
We were hoping a fix would be ready in time for the 12.2 point
release, but it's looking like that probably won't happen.
Mathias
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part
URL: <http://alioth-lists.debian.net/pipermail/pkg-lxc-devel/attachments/20230926/84785f88/attachment.sig>
More information about the Pkg-lxc-devel
mailing list