I made a copy (via restore from backup) of my unprivileged lxc container to a privileged one. On the new one, keyctl and nesting is checked. I go to run a docker container on the new LXC container, and it fails with this error message:
I didn't receive this error on my old LXC instance. What has changed?
Code:
docker: Error response from daemon: AppArmor enabled on system but the docker-default profile could not be loaded: running `/usr/sbin/apparmor_parser apparmor_parser -Kr /var/lib/docker/tmp/docker-default2353768627` failed with output: apparmor_parser: Unable to replace "docker-default". Permission denied; attempted to load a profile while confined?
error: exit status 243.
ERRO[0006] error waiting for container: context canceledI didn't receive this error on my old LXC instance. What has changed?