From 68c9ebdf1f4691a7d5bf5fb9f40021f977ca8f3f Mon Sep 17 00:00:00 2001 From: Jessica Frazelle Date: Wed, 25 Nov 2015 11:32:00 -0800 Subject: [PATCH] Remove ipc rule in docker-engine apparmor profile On a ubuntu 15.04 machine with apparmor_parser version 2.10 I get ``` Syntax Error: Unknown line found in file: /etc/apparmor.d/docker-engine line: 26 ``` when running `aa-complain /etc/apparmor.d/docker-engine`. It's super weird because ipc is documented in the apparmor manual, but it doesnt seem to be working at all. Tested on a few servers. Signed-off-by: Jessica Frazelle --- contrib/apparmor/template.go | 1 - 1 file changed, 1 deletion(-) diff --git a/contrib/apparmor/template.go b/contrib/apparmor/template.go index 49c950e8e1..61556d2e7a 100644 --- a/contrib/apparmor/template.go +++ b/contrib/apparmor/template.go @@ -25,7 +25,6 @@ profile /usr/bin/docker (attach_disconnected, complain) { signal (receive) peer=unconfined, signal (send), {{end}}{{end}} - ipc rw, network, capability, owner /** rw,