Disable AppArmor confinement for containers (!18) · Merge requests · lxc / lxc

Michael Biebl requested to merge biebl/lxc:debian/bookworm into debian/bookworm Sep 01, 2023

Running LXC containers on a bookworm host with AppArmor enabled, causes services to fail that use systemd hardening features. This also directly affects debci, which runs on stable, causing various packages to fails their autopkgtests. To unbreak those packages, disable AppArmor confinement.

This mitigates #1050256

Disable AppArmor confinement for containers

Merge request reports