Hi. I've read the numerous threads regarding apparmor flooding syslog with messages related to actions not allowed to be performed inside containers but can't figure still how to reduce os investigate and only seem to find the solution of ignoring with conf on syslog.
In this case is a new PVE6 server and the first (privileged) container we have migrated which is an nginx proxy running on Debian 9. The complete error is:
which I understand details that the container 1192 is trying to remount /dev/ which is not allowed. Can someone point if this is related to having to add some permissions or modules to the LXC container definition or how to debug inside the container which process con be producing that error?
Thanks.
In this case is a new PVE6 server and the first (privileged) container we have migrated which is an nginx proxy running on Debian 9. The complete error is:
Code:
Aug 31 16:46:31 a20 kernel: [ 354.411896] audit: type=1400 audit(1598885191.817:95): apparmor="DENIED" operation="mount" info="failed flags match" error=-13 profile="lxc-1192_</var/lib/lxc>" name="/dev/" pid=9546 comm="(s_server)" flags="ro, nosuid, noexec, remount, strictatime"which I understand details that the container 1192 is trying to remount /dev/ which is not allowed. Can someone point if this is related to having to add some permissions or modules to the LXC container definition or how to debug inside the container which process con be producing that error?
Thanks.