Unable to load another apparmor profile from /etc/apparmor.d/lxc/
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apparmor (Ubuntu) |
Invalid
|
High
|
Unassigned | ||
lxc (Ubuntu) |
Fix Released
|
High
|
Unassigned |
Bug Description
I'm trying to set another apparmor profile for a specific container, so I set lxc.aa_profile to lxc-upgrader01 and simply copied the default profile for now, but when reloading apparmor it fails...
=====
root@athos:
lxc-default
root@athos:
* Reloading AppArmor profiles
Skipping profile in /etc/apparmor.
Skipping profile in /etc/apparmor.
root@athos:
[123440.717875] type=1400 audit(133311507
[123440.743692] type=1400 audit(133311507
[123440.908215] type=1400 audit(133311507
[123440.947041] type=1400 audit(133311507
root@athos:
root@athos:
--- lxc-default 2012-03-30 13:38:30.966724366 +0000
+++ lxc-upgrader01 2012-03-30 13:38:49.389578258 +0000
@@ -1,6 +1,7 @@
#include <tunables/global>
-profile lxc-container-
+profile lxc-container-
+
network,
capability,
file,
root@athos:
* Reloading AppArmor profiles
Skipping profile in /etc/apparmor.
AppArmor parser error for /etc/apparmor.
Skipping profile in /etc/apparmor.
root@athos:
[123465.749549] type=1400 audit(133311510
[123465.968228] type=1400 audit(133311510
[123465.984424] type=1400 audit(133311510
[123466.025319] type=1400 audit(133311510
root@athos:
lxc-default lxc-upgrader01
root@athos:
Also opening against apparmor as it's not clear whether it's lxc's or apparmor's fault.