Skip to content

engine: safer creation of rootlesskit apparmor profile #23642

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

engine: safer creation of rootlesskit apparmor profile #23642

wants to merge 1 commit into from

Conversation

@dvdksn
Copy link
Contributor

@dvdksn dvdksn commented Nov 3, 2025

Signed-off-by: David Karlsson [email protected]

Description

The current instruction is technically incorrect since we are not exporting the
filename variable and the instruction suggests that users should run this
discretely. This PR adds an export statement as well as a quick check to make
sure the file exists before attempting to move it into the apparmor directory
(to prevent users from accidentally sudo mving their home directory there in
case $filename is unset)

Related issues or tickets

@netlify
Copy link

netlify bot commented Nov 3, 2025
edited
Loading

Deploy Preview for docsdocker ready!

Name Link
🔨 Latest commit 6e8ef4c
🔍 Latest deploy log https://app.netlify.com/projects/docsdocker/deploys/691dd696da050f0008e563b7
😎 Deploy Preview https://deploy-preview-23642--docsdocker.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@github-actions github-actions bot added area/engine Issue affects Docker engine/daemon area/security labels Nov 3, 2025
@dvdksn dvdksn requested a review from thaJeztah November 3, 2025 09:16
vvoland
vvoland reviewed Nov 4, 2025
View reviewed changes
@dvdksn dvdksn force-pushed the ubuntu-rootless-apparmor-profile branch from eb9d593 to 6e8ef4c Compare November 19, 2025 14:39
@dvdksn dvdksn requested a review from vvoland November 19, 2025 14:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thaJeztah thaJeztah Awaiting requested review from thaJeztah

@vvoland vvoland Awaiting requested review from vvoland

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

area/engine Issue affects Docker engine/daemon area/security

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Dangerous instruction

2 participants

@dvdksn @vvoland