why do I have to use backports kernel to make LXC work on Bookworm?

To: debian-kernel@lists.debian.org
Subject: why do I have to use backports kernel to make LXC work on Bookworm?
From: Harald Dunkel <harri@afaics.de>
Date: Thu, 28 Dec 2023 14:13:28 +0100
Message-id: <[🔎] 905d282f-c797-4395-a91e-05586888ed43@afaics.de>

Hi folks,

apparently LXC is affected by a bug around apparmor support for months,
see #1052934 and #1050256. The workaround is to set PrivateNetwork=false
(set by default as a security measure) or to use a backports kernel.

AFAIU reason is a bug in 6.1. The fix (1cf26c3d2c4c) is not a one-liner,
but reasonably small, and it has already been verified, so how comes it
is still in the loop for weeks?


Regards

Harri

Reply to:

Follow-Ups:
- Re: why do I have to use backports kernel to make LXC work on Bookworm?
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Bug#1059390: linux-image-6.5.0-5-amd64: Large number of missed packets reported by "e1000e" driver
Next by Date: Re: why do I have to use backports kernel to make LXC work on Bookworm?
Previous by thread: Bug#1053825: Screensaver with only blank does not work after suspend
Next by thread: Re: why do I have to use backports kernel to make LXC work on Bookworm?
Index(es):
- Date
- Thread