i noticed some logs on kernl.log on one of my LXC container:
because in proxmox VE server is missing in /etc/apparmor.d/lxc/lxc-default
now lxc-default is:
log disappeared, is it correct?
Code:
audit: type=1400 audit(1525619562.342:31): apparmor="DENIED" operation="mount" info="failed flags match" error=-13 profile="lxc-container-default-cgns" name="/" pid=7220 comm="(imedated)" flags="rw, rslave"because in proxmox VE server is missing in /etc/apparmor.d/lxc/lxc-default
Code:
mount options=(rw, bind, ro),now lxc-default is:
Code:
# Do not load this file. Rather, load /etc/apparmor.d/lxc-containers, which
# will source all profiles under /etc/apparmor.d/lxc
profile lxc-container-default flags=(attach_disconnected,mediate_deleted) {
#include <abstractions/lxc/container-base>
mount options=(rw, bind, ro),
# the container may never be allowed to mount devpts. If it does, it
# will remount the host's devpts. We could allow it to do it with
# the newinstance option (but, right now, we don't).
deny mount fstype=devpts,
}log disappeared, is it correct?