I have created some LXC containers based on Debian 9 which needed access to /lib/modules. Since the hypervisor handles kernel stuff, i have mounted the hypervisor's /lib/modules to the container's /lib/modules as read-only. This worked quite well, until recently Debian has some updates about the linux-headers package, which tries to modify /lib/modules - which is mounted as read-only. So for now, each apt upgrade in each LXC container fails.
How should i handle this situation? I cannot set /lib/modules to rw, since it will break the host, i fear, and i also cannot uninstall linux-headers in the containers at all, since there are packages installed which have this package as a dependency, so they would be uninstalled by apt as well. Has anyone an idea?
How should i handle this situation? I cannot set /lib/modules to rw, since it will break the host, i fear, and i also cannot uninstall linux-headers in the containers at all, since there are packages installed which have this package as a dependency, so they would be uninstalled by apt as well. Has anyone an idea?
