control: tags -1 + confirmed pending The fix from #1098521 appears to be insufficient for unprivileged containers started by non-root users. I actually found two bugs, one that I've submitted upstream[0] and one in a Debian-specific patch for containers that use the "lxc-container-default-with-nesting" apparmor profile[1].
Once those two fixes are reviewed/approved, I'll apply the fixes to lxc in sid and cherry-pick them back to trixie, hopefully in time to be included in the 13.2 point release mid-November. Mathias [0] -- https://github.com/lxc/lxc/pull/4598 [1] -- https://salsa.debian.org/lxc-team/lxc/-/merge_requests/23
signature.asc
Description: This is a digitally signed message part
