Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

apparmor should be disabled by default on Ubuntu #10015

Open
4 of 14 tasks
DaanDeMeyer opened this issue Jun 7, 2024 · 1 comment
Open
4 of 14 tasks

apparmor should be disabled by default on Ubuntu #10015

DaanDeMeyer opened this issue Jun 7, 2024 · 1 comment
Assignees
@kishorekumar-anchala
Labels
Area: Common Tools bug report OS: Ubuntu

Comments

@DaanDeMeyer
Copy link
Contributor

Description

apparmor.service being enabled by default in the images causes various issues (e.g. https://gitlab.com/apparmor/apparmor/-/issues/402). Given these are ephemeral build VMs where users have full root access already and can trivially disable apparmor anyway, there's no real point in having apparmor enabled. It only serves to cause hard to debug issues. To avoid others running into these issues, I propose to disable apparmor in the runner images.

Platforms affected

  • Azure DevOps
  • GitHub Actions - Standard Runners
  • GitHub Actions - Larger Runners

Runner images affected

  • Ubuntu 20.04
  • Ubuntu 22.04
  • Ubuntu 24.04
  • macOS 11
  • macOS 12
  • macOS 13
  • macOS 13 Arm64
  • macOS 14
  • macOS 14 Arm64
  • Windows Server 2019
  • Windows Server 2022

Image version and build link

latest

Is it regression?

no

Expected behavior

apparmor is disabled by default

Actual behavior

apparmor is enabled by default

Repro steps

  • Run job
  • systemctl status apparmor will show that it is running
@DaanDeMeyer DaanDeMeyer changed the title apparmor should be disable by default on Ubuntu apparmor should be disabled by default on Ubuntu Jun 7, 2024
@ijunaidm ijunaidm self-assigned this Jun 10, 2024
@ijunaidm
Copy link
Contributor

@DaanDeMeyer - Thank you for bringing this issue to us, we are investigating on this issue and we will update you on this issue after our findings.

@mikhailkoliada mikhailkoliada mentioned this issue Jun 10, 2024
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kishorekumar-anchala kishorekumar-anchala

Labels
Area: Common Tools bug report OS: Ubuntu
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@DaanDeMeyer @mikhailkoliada @ijunaidm @kishorekumar-anchala