Building on Ubuntu in lxc container, Apparmor interferes?

[JPT]

Hi,

I plan to file a few bugs on virtualdub.
Since the latest development version (1.7.47) is not provided through the wine PPA (1.7.44) I want to compile it myself.
Starting the lxc container fails. I believe it's because apparmor denies execution

Code: Select all

sudo lxc-create -t ubuntu -n Wine32 -- --bindhome $LOGNAME -a i386 --release vivid
(worked fine)
sudo lxc-start -F -n Wine32
lxc-start: lsm/apparmor.c: apparmor_process_label_set: 183 No such file or directory - failed to change apparmor profile to lxc-container-default
lxc-start: sync.c: __sync_wait: 51 invalid sequence number 1. expected 4
lxc-start: start.c: __lxc_start: 1164 failed to spawn 'Win32'
lxc-start: cgmanager.c: cgm_remove_cgroup: 519 call to cgmanager_remove_sync failed: invalid request
lxc-start: cgmanager.c: cgm_remove_cgroup: 521 Error removing all:lxc/Win32-4
lxc-start: lxc_start.c: main: 344 The container failed to start.
lxc-start: lxc_start.c: main: 348 Additional information can be obtained by setting the --logfile and --logpriority options.

Am I right with my assumption?
How do I solve this problem?

thanks

JPT

[dimesio]

It does look like AppArmor is the problem. I assume disabling AppArmor would solve it. If what you're looking for is how to configure AppArmor to not interfere without disabling it entirely, that's not really a Wine question. Try the Ubuntu forum.

[JPT]

Well, my question is: what access permissions exactly are needed to run the lxc container?

Since creating the container work, reading/writing should be ok.
execution permission is the problem, correct?
should I add X permission the to whole tree under /var/lib/lxc or /var/lib/lxcfs?

thanks