Closed purejava closed 1 year ago
That's not a mailcow problem.
Looks like a configuration issue from docker and app armor.
I never touched the AppArmor configuration nor configured docker other than the hints in your documentation - basically added borgmatic back up and that's it.
Downgrading the two packages fixes the problem, upgrading shows the issue again. As you state, you support Debian 11, mailcow should run on a current Debian 11 without issues. Even, if this "is not a mailcow problem".
According to this, AppAmor can be someway half installed.
Just adding the packages apparmor
and apparmor-utils
to the system fixed the issue for me.
This is a Debian issue: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989781
Either disable AppArmor or install the userland tools for AppArmor since according to the error message your system is missing apparmor_parser
:
apt install apparmor-utils
(EDIT: I was too late posting my answer since I got distracted, will leave this here.)
This is a Debian issue:
This is debatable. Since mailcow installation guide points to Docker CE as a requirement in opposite to install docker.io from the Debian repo (which probably wouldn't cause configuration issues) and apparmor is needed in conjunction with Docker CE, the documentation could mention this instead of the devs arguing "it's a Debian issue".
Edit: it's apparmor that contains /sbin/apparmor_parser
, not apparmor-utils
I never touched the AppArmor configuration nor configured docker other than the hints in your documentation - basically added borgmatic back up and that's it.
Downgrading the two packages fixes the problem, upgrading shows the issue again. As you state, you support Debian 11, mailcow should run on a current Debian 11 without issues. Even, if this "is not a mailcow problem".
It does. No one else have reported the issue so far exept you. And yes we run 200+ mailcow dockerized Instances for our customers running on Debian 11 rock stable. So that's a bit unfair to say don't you think?
Let's see. The new version of the two Debian packages mentioned above were released just yesterday.
The release notes contain changes regarding AppAmor: https://github.com/moby/moby/pull/42276
So that's a bit unfair to say don't you think?
In my mind it's unfair to answer a bug report to which someone has invested the time to open it by writing: looks like a configuration issue from docker and app armor.
Did you try to reproduce the issue before suspecting what might be behind it?
Probably not, because changing the suspected Debian packages leads to the problem.
I explained in a previous comment, why I think this relates to mailcow.
Every software developer has bugs in his code. Even the Linux kernel maintainers have an average error quote of 1 bug ~every 500 lines of code.
This is the only project on GitHub where developers feel their honor is violated once a bug report is opened.
From my earlier experience with this project I am happy to not being yelled at yet. But I already regret that I was trying to help you.
How /when did I yelled at you? I was only saying that this issue is not a mailcow issue.
And of course did I reproduced it to be exact a few hours earlier roundabout the time I wrote my previous statement about it.
I'm going to close this pr as it seems to be undiscussible in your eyes...
Contribution guidelines
I've found a bug and checked that ...
Description
mailcow is up to date via
update.sh
.Today, an update for the two packages mentioned above was offered.
After the update, mailcow fails to start with an error message:
Error response from daemon: AppArmor enabled on system but the docker-default profile could not be loaded: running apparmor_parser apparmor_parser --version failed with output: error: exec: "apparmor_parser": executable file not found in $PATH
Downgrading the two packages makes mailcow start again.
The packages are installed from:
https://download.docker.com/linux/debian bullseye stable
Logs:
Steps to reproduce:
Which branch are you using?
master
Operating System:
Debian GNU/Linux 11
Server/VM specifications:
16 GB, 4 vCores
Is Apparmor, SELinux or similar active?
no
Virtualization technology:
KVM
Docker version:
23.0.0
docker-compose version or docker compose version:
v2.9.0
mailcow version:
2023-02
Reverse proxy:
none
Logs of git diff:
Logs of iptables -L -vn:
Logs of ip6tables -L -vn:
Logs of iptables -L -vn -t nat:
Logs of ip6tables -L -vn -t nat:
DNS check: