Docker not working: "apparmor failed to apply profile: write /proc/self/attr/exec: invalid argument: unknown."

Question

Docker not working: "apparmor failed to apply profile: write /proc/self/attr/exec: invalid argument: unknown."

figbux opened this issue 4 years ago · 3 comments

figbux commented 4 years ago

Hello,

Trying to start docker and having the same issue as stated in: docker/for-linux#1199

Tested on: 5.10.17-hardened1-1-hardened

Would you mind solving this or should we try working around it?

Thanks!

Answer 1 · 2021-02-18T11:28:13.000Z

Hello @figbux , reading through the bug I don't see how this is an issue with our kernels, the regression is clearly not on our side but a shortcoming in the container runtime

Answer 2 · 2021-02-18T12:09:57.000Z

I actually opened this issue regarding to the comment:

docker/for-linux#1199 (comment)

I don't mean regression is on our or on their side; I just don't know. So I've opened this issue to ask. If you feel like that you can close the issue.

Thanks.

Answer 3 · 2021-02-18T12:32:06.000Z

@figbux I see, thank you very much for reaching out to us, this is really important! I think the right conclusion here is that we simply prioritize to backport the runc pull request to allow it to work with the appropriate lsm interface. This would resolve the issue in our packages at the right spot 🐱
Thanks again!