Comment 2 for bug 1342960
Revision history for this message
| Diogo Matsubara (matsubara) wrote Re: Error setting cgroup devices.deny limit with nested lxc container | #2 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Hi Serge, you're right. I removed the lxc.hook.mount = mountcgroups from the wrong template. Now that I destroyed the whole juju environment, removed lxc.hook.mount = mountcgroups from the correct one and bootstrapped again, I got juju's lxc containers to start correctly. Thank you for helping debug this.
In any case, I got the instructions to include that lxc.hook.mount = mountcgroups in /usr/share/
# To support container nesting on an Ubuntu host while retaining most of
# apparmor's added security, use the following two lines instead.
#lxc.aa_profile = lxc-container-
#lxc.hook.mount = /usr/share/
So I think this is at least a documentation bug.