Sorry comment #10 is just wrong. AppArmor does not think that it is accessing /sys/ when it is accessing /proc/sys/
there are multiple ways this can happen, but in short it is either due to namespacing, bind mounts, namespacing and bind mounts, or using the sysctl syscall directly which for various historical reasons does map directly to /sys/ but in that case it is very much not accessing /proc/ so the statement is still wrong. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2131008 Title: runcopen sysctl net.ipv4.ip_unprivileged_port_start file: reopen fd 8: permission denied: To manage notifications about this bug go to: https://bugs.launchpad.net/lxd/+bug/2131008/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
