Virtualization

LXC

NFS mount

  • Error messages came up when mounting NFS directory in a system running on LXC container.
    mount: [ip address]:/shared/storage/ is write-protected, mounting read-only
    mount: cannot mount [ip address]:/shared/storage/ read-only

    When I saw /var/log/messages:

    Jun  4 00:33:00 virt kernel: [407261.190708] audit: type=1400 audit(1465000380.283:50): apparmor="DENIED" operation="mount" info="failed type match" error=-13 profile="lxc-container-default" name="/local/mount/point/" pid=23343 comm="mount" fstype="nfs" srcname="[ip address]:/shared/storage/" flags="ro"
  • Configure the host of the LXC container to add an option in AppArmor configuration related to LXC.
    # nano /etc/apparmor/lxc/lxc-default
    ...
       mount fstype=nfs,
    }
  • Restart apparmor service.
    # systemctl restart apparmor.service
 
doc/virt.txt · Last modified: 2016/06/04 02:09 by stwn · [Old revisions]
Recent changes RSS feed Powered by PHP Valid XHTML 1.0 Valid CSS Driven by DokuWiki