boxxy icon indicating copy to clipboard operation
boxxy copied to clipboard
verified publisher icon queer

boxxy does not work on Ubuntu 22.04 with enabled AppArmor

Open Self-Perfection opened this issue 1 year ago • 0 comments 

user1@boxxy-ubuntu2404:~$ mkdir this to_that
user1@boxxy-ubuntu2404:~$ boxxy  -l debug --rule  "$(pwd)/this/:$(pwd)/to_that/:directory" bash
 DEBUG boxxy::config > loading rules (not asked not to!)
 DEBUG boxxy::config > searching for boxxy config starting at /home/user1
 DEBUG boxxy::config > checking for: /home/user1/boxxy.yaml
 DEBUG boxxy::config > checking for: /home/boxxy.yaml
 DEBUG boxxy::config > checking for: /boxxy.yaml
 DEBUG boxxy::config > ran out of parents to search!
 INFO  boxxy::config > loaded 1 total rule(s)
 DEBUG boxxy::enclosure::rule > cli-loaded rule: /home/user1/this/ -> /home/user1/to_that/ (directory): checking if rule applies to binary
 DEBUG boxxy::enclosure::rule > cli-loaded rule: /home/user1/this/ -> /home/user1/to_that/ (directory): rule applies to binary via only + context!
 DEBUG boxxy::enclosure       > processing path creation for rule 'cli-loaded rule: /home/user1/this/ -> /home/user1/to_that/ (directory)'
 DEBUG boxxy::enclosure       > temp files: ensuring path: "/home/user1/this"
 DEBUG boxxy::enclosure       > temp files: rewriting to: "/home/user1/to_that"
 DEBUG boxxy::enclosure       > temp files: rewrote base path "/home/user1/to_that" => "/home/user1/this"
 DEBUG boxxy::enclosure       > setup root
 DEBUG boxxy::enclosure::fs   > setting up root for flat-thunder-3254
 DEBUG boxxy::enclosure       > bind mount root rw
 DEBUG boxxy::enclosure::fs   > bind mount "/" onto "/tmp/boxxy-containers/flat-thunder-3254" as rw
 DEBUG boxxy::enclosure::fs   > bind mount "/" onto "/tmp/boxxy-containers/flat-thunder-3254"
 ERROR boxxy::enclosure       > EACCES: Permission denied
 DEBUG boxxy::enclosure       > child stopped!
 DEBUG boxxy::enclosure::linux > mapped uids {
    Uid(
        1001,
    ): Uid(
        1001,
    ),
}
 DEBUG boxxy::enclosure::linux > mapped gids {
    Gid(
        1001,
    ): Gid(
        1001,
    ),
    Gid(
        0,
    ): Gid(
        0,
    ),
}
 DEBUG boxxy::enclosure        > finished setting up uid/gid mapping
 ERROR boxxy::enclosure        > child exited early (ESRCH)! try running boxxy with `-l debug` or `-l trace` if it isn't obvious why

I ensured that the reason is AppArmor: In fresh virtual machine with Ubuntu 22.04 boxxy works, but ceases to work once AppArmor is installed and vm rebooted.

Self-Perfection avatar Jan 27 '25 01:01 Self-Perfection