[Bug 1319525] Re: juju-local LXC containers hang due to AppArmor denial of rpc_pipefs mount with local charms
Tyler Hicks
tyhicks at canonical.com
Thu May 15 15:01:04 UTC 2014
Hi Serge - I'm still wanting a little more information. I tried to
reproduce the bug myself and can't hit the AppArmor denial. I assume
that it must be specific to Charles' local trusty/wordpress charm.
Charles and/or Curtis, can you explain what change occurred in juju-core
that has caused the need to mount rpc_pipefs filesystems inside the
container?
Serge, as far as allowing rpc_pipefs inside the container, I don't know
how safe that would be off the top of my head. I looked at the other
filesystems that are allowed by the container-base abstraction and was
surprised to see debugfs was allowed. I can't imagine that allowing
rpc_pipefs could be more dangerous that debugfs, but that also doesn't
mean that we should allow rpc_pipefs. I need to spend some time today
understanding more about rpc_pipefs.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1319525
Title:
juju-local LXC containers hang due to AppArmor denial of rpc_pipefs
mount with local charms
To manage notifications about this bug go to:
https://bugs.launchpad.net/juju-core/+bug/1319525/+subscriptions
More information about the Ubuntu-server-bugs
mailing list