[apparmor] lxc/lxc-default contains syntax errors. Line [ capability, ]
Seth Arnold
seth.arnold at canonical.com
Wed Mar 30 02:02:19 UTC 2016
On Tue, Mar 29, 2016 at 05:10:39PM -0700, John Johansen wrote:
> >> lxc/lxc-default contains syntax errors. Line [ capability,]
> >> Ubuntu 12.04
> > Hello; I wasn't able to recreate this locally. Do you get any errors when
> hrmmm IIRC (and I haven't taken the time to check) a bare capability rule
> ie.
> capability,
>
> is not valid to the version of apparmor in 12.04
That's what I expected to find when I went investigating, but the file
looks like this out of the box:
sarnold at sec-precise-amd64:~$ cat /etc/apparmor.d/lxc/lxc-default
# Do not load this file. Rather, load /etc/apparmor.d/lxc-containers, which
# will source all profiles under /etc/apparmor.d/lxc
profile lxc-container-default flags=(attach_disconnected,mediate_deleted) {
network,
capability,
file,
umount,
...
$ sudo grep lxc /sys/kernel/security/apparmor/profiles
lxc-container-default (enforce)
/usr/bin/lxc-start (enforce)
That's how I came to wondering if the file was corrupted.
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20160329/03cde10c/attachment.pgp>
More information about the AppArmor
mailing list