cannot confine using apparmor on Arch linux LTS kernel #3987
Labels
notourbug
The issue is valid, but it isn't directly caused by (or cannot be fixed by) firejail
Comments
I can confirm your observations on Arch Linux with linux-lts |
|
FYI the issue has been reported upstream: |
|
FYI https://gitlab.com/apparmor/apparmor/-/issues/150 was closed last week. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Since a recent kernel update I got the error "Warning: Cannot confine the application using AppArmor" when using the "--apparmor" flag"
The verification performed in src/firejail/sandbox.c failed with the error EINVAL:
test.c:
#include <sys/apparmor.h>
#include <stdio.h>
int main() {
if(aa_change_onexec("firejail-default")<0) { perror(NULL); }
}
$ gcc -lapparmor test.c
$ ./a.out
Invalid argument
Still the "aa-status" command shows that the firejail-default profile is correctly loaded in the kernel.
Don't know if this is a distro specfic issue.
The text was updated successfully, but these errors were encountered: