The steam profile was only added upstream in Nov 2023 [1] (after 23.10/mantic), so it can't be a leftover of upgrading to 24.04/noble from a previous version, right?
> Fix: Change flags=(complain) to flags=(unconfined): The "fixed profile" also removes the exec_path line without explanation. Curiously, that line was only added to upstream apparmor 8 months ago[2], and is in 25.10/questing[3] but not 24.04. But the flags remain as unconfined in all cases. I arrived here while looking into the same bug on Valve's repo[4] and linux_gaming subreddit[5], where the user's profiles consist almost entirely of LLM-generated content. While that doesn't necessarily prove that the bug is an LLM hallucination, it would explain the inconsistencies. The "broken profile" simply doesn't exist in any version of Ubuntu or upstream apparmor. [1] https://gitlab.com/apparmor/apparmor/-/commit/6c01b90c1360414dac53489d3fb60b13a426af29 [2] https://gitlab.com/apparmor/apparmor/-/blame/b71633110e14794d4854b129bcee525f2a20bf0c/profiles/apparmor.d/steam#L9 [3] https://git.launchpad.net/ubuntu/+source/apparmor/tree/profiles/apparmor.d/steam?h=applied%2Fubuntu%2Fquesting [4] https://github.com/ValveSoftware/steam-for-linux/issues/12620 [5] https://old.reddit.com/r/linux_gaming/comments/1q3vm1m/steam_apparmor_profile_blocks_user_namespaces ** Bug watch added: github.com/ValveSoftware/steam-for-linux/issues #12620 https://github.com/ValveSoftware/steam-for-linux/issues/12620 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2137425 Title: Steam AppArmor profile blocks user namespaces despite claiming to be unconfined To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2137425/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
