Docker-sec is not up-to-date
Opened this issue · 1 comments
I am using Ubuntu 16.04 with Docker 18.06.0-ce, and the runc version is 1.0.0-rc5+dev. I realized that docker is using overlay2 file system instead of aufs. I replaced aufs in your script by overlay2. When I try ```sudo dockers-sec run hello-world", it went wrong with "Container practical_tereshkova exists!
Container id 7082fe50d89f0f47b0d22e62c213e3f4083e31e06d03ef2b1de30b5dc2374870
Container mount point 7f806ca080b231c7b194f17c15e7377d7e16633883287b8562e4ac9ea615cd76
Container boot profile pivot_root_7082fe50d89f0f47b0d22e62c213e3f4083e31e06d03ef2b1de30b5dc2374870
Container runtime profile docker_b7ccdbf5e27be63ad488ed87796b0f331191b9d5
change_user_support: No user found!
add_volumes_to_docker_runc: No volumes found!
ERROR: Found reference to variable MOUNT_POINT_AUFS_DOCKER, but is never declared
Profile generation completed! (probably successfully)
Error response from daemon: OCI runtime create failed: container_linux.go:348: starting container process caused "process_linux.go:402: container init caused "rootfs_linux.go:46: preparing rootfs caused \"permission denied\""": unknown
Error: failed to start containers: practical_tereshkova"
Hello, I have the same problem as you. I used ubuntu18.04 and docker18.09.1. You can add "storage-driver": "aufs" in /etc/docker-daemon. json to change the storage driver used by docker. But there are still some problems:
change_user_support: No user found!
add_volumes_to_docker_runc: No volumes found!
ERROR: Profile /usr/bin/docker-runc has too many specified profile transitions.
Have you successfully solved the problem since then? Thank you!