TOMOYO and runc containers dislike one another.
Tetsuo Handa
penguin-kernel at I-love.SAKURA.ne.jp
Thu Nov 21 23:22:07 UTC 2024
Hello.
On 2024/11/22 3:42, Dr. Greg wrote:
> Kernel version is 6.10 something.
>
> The path causing the issue is as follows:
>
> /dev/fd/7
>
> Here are the warning messages that runc spits out:
>
> FATA[0000] nsexec[1291]: could not ensure we are a cloned binary: No
> such file or directory
>
> ERRO[0000] runc run failed: unable to start container process: waiting
> for init preliminary setup: read init-p: connection reset by peer
Please try applying commit ada1986d0797 ("tomoyo: fallback to realpath
if symlink's pathname does not exist").
Regards.
More information about the Linux-security-module-archive
mailing list