I found a workaround: I removed the apparmor package *inside* the container(s):
After a restart of the containers It's now working (with kernel 6.14 and without "lxc.apparmor.profile = unconfined"). Both host and containers are running Ubuntu 24.04 BTW (upgraded from previous versions). However, uninstalling apparmor also uninstalled snapd in one of the containers. I think, I don't need snap in the container at the moment, so this is fine for me as a workaround, but probably not a final solution. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2118824 Title: Podman containers with no-new-privilleges fail to create network sockets due to AppArmor denial To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/podman/+bug/2118824/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
