Comments (6)
yosifkit
commented on July 3, 2024
I'm unable to reproduce. 😕
$ docker pull ubuntu:rolling
rolling: Pulling from library/ubuntu
c830499a6a92: Pull complete
b38f134463e2: Pull complete
2fd6a415fd8e: Pull complete
Digest: sha256:be154cc2b1211a9f98f4d708f4266650c9129784d0485d4507d9b0fa05d928b6
Status: Downloaded newer image for ubuntu:rolling
docker.io/library/ubuntu:rolling
$ docker run -it --rm ubuntu:rolling
root@076520bcf464:/# apt update
Get:1 http://security.ubuntu.com/ubuntu hirsute-security InRelease [101 kB]
Get:2 http://archive.ubuntu.com/ubuntu hirsute InRelease [269 kB]
Get:3 http://security.ubuntu.com/ubuntu hirsute-security/multiverse amd64 Packages [1725 B]
Get:4 http://security.ubuntu.com/ubuntu hirsute-security/main amd64 Packages [29.4 kB]
Get:5 http://security.ubuntu.com/ubuntu hirsute-security/universe amd64 Packages [10.8 kB]
Get:6 http://security.ubuntu.com/ubuntu hirsute-security/restricted amd64 Packages [97.2 kB]
Get:7 http://archive.ubuntu.com/ubuntu hirsute-updates InRelease [109 kB]
Get:8 http://archive.ubuntu.com/ubuntu hirsute-backports InRelease [90.7 kB]
Get:9 http://archive.ubuntu.com/ubuntu hirsute/universe amd64 Packages [16.8 MB]
Get:10 http://archive.ubuntu.com/ubuntu hirsute/multiverse amd64 Packages [252 kB]
Get:11 http://archive.ubuntu.com/ubuntu hirsute/restricted amd64 Packages [111 kB]
Get:12 http://archive.ubuntu.com/ubuntu hirsute/main amd64 Packages [1791 kB]
Get:13 http://archive.ubuntu.com/ubuntu hirsute-updates/multiverse amd64 Packages [1725 B]
Get:14 http://archive.ubuntu.com/ubuntu hirsute-updates/restricted amd64 Packages [97.2 kB]
Get:15 http://archive.ubuntu.com/ubuntu hirsute-updates/universe amd64 Packages [17.4 kB]
Get:16 http://archive.ubuntu.com/ubuntu hirsute-updates/main amd64 Packages [41.2 kB]
Fetched 19.8 MB in 9s (2257 kB/s)
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
All packages are up to date.
root@076520bcf464:/# from docker-brew-ubuntu-core.
babelouest
commented on July 3, 2024
That's very weird!
I have the exact same image IDs pulled, and yet I still have the error.
I'm running Docker version 18.09.1, build 4c52b90 on a Debian Buster.
I'll try from a Ubuntu device later.
from docker-brew-ubuntu-core.
babelouest
commented on July 3, 2024
Nope, I confirm the same problem on a Ubuntu 20.10, strange...
from docker-brew-ubuntu-core.
tianon
commented on July 3, 2024
This looks very similar to debuerreotype/docker-debian-artifacts#122; if using --security-opt seccomp=unconfined makes it work, you'll need to update your host to:
- Docker version 19.03.9 or newer
- libseccomp version 2.4.2 or newer
See moby/moby#40734 for more details around this (and similar issues).
from docker-brew-ubuntu-core.
babelouest
commented on July 3, 2024
@tianon , indeed, adding --security-opt seccomp=unconfined makes it work. Debian Bullseye and Ubuntu 21.04 are up-to-date according to the packages you mention. Thanks for the help!
from docker-brew-ubuntu-core.
babelouest
commented on July 3, 2024
After a few tries I was able to find a workaround.
The problem is --security-opt seccomp=unconfined can't be used on a docker build command. Therefore I force the docker image to trust the sources no matter what.
Warning
I don't believe these changes are secure enough to run a docker instance in production mode. I use this image only to build packages.
So my Dockerfile starts like that:
FROM ubuntu:rolling
COPY ["sources.list", "/etc/apt/"]
COPY ["99own", "/etc/apt/apt.conf.d/"]
# Install required packages
RUN apt-get update && apt-get upgrade -y
The file sources.list:
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute main restricted
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute-updates main restricted
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute universe
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute-updates universe
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute multiverse
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute-updates multiverse
deb [trusted=yes] http://archive.ubuntu.com/ubuntu/ hirsute-backports main restricted universe multiverse
deb [trusted=yes] http://security.ubuntu.com/ubuntu/ hirsute-security main restricted
deb [trusted=yes] http://security.ubuntu.com/ubuntu/ hirsute-security universe
deb [trusted=yes] http://security.ubuntu.com/ubuntu/ hirsute-security multiverse
And the file 99own:
APT::Get::AllowUnauthenticated "true";
APT::Get::AllowInsecureRepositories "true";
APT::Get::AllowDowngradeToInsecureRepositories "true";
from docker-brew-ubuntu-core.
Related Issues (20)
- less command missing Ubuntu 20.10 image HOT 1
- how to tell the version of python3 supported in the default repository without installing? HOT 2
- Repositories no longer have release files HOT 3
- changelogs of "native" packages are missing HOT 3
- Cannot create new threads in Ubuntu 21.10 HOT 2
- [Question] Why date is not updated when new version is created? HOT 2
- to use gpu but slow HOT 1
- Ubuntu:20.04 image usage guidelines HOT 1
- Update Ubuntu Focal 20.04 image to 20220105 HOT 9
- dpkg broken in Jammy image on singular-doc pkg extraction HOT 2
- Need help in increasing the windows/chrome resolution for Ubuntu image HOT 1
- Update Ubuntu Focal 20.04 image to 20220316 HOT 4
- apt update fails on ubuntu:jammy unless --security-opt seccomp=unconfined is specified HOT 16
- Rerun build job to update ubuntu image LTE 20.04 HOT 1
- `apt update` fails on macOS HOT 1
- how to build 16.04.4 docker image? HOT 1
- Q: Get SERIAL or GitHash from running image HOT 1
- ubuntu:latest throws an error "failed to solve with frontend dockerfile.v0" HOT 3
- Unable to build from ubuntu 21.04 since 23 july HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from docker-brew-ubuntu-core.