scripts(run-docker): fix AppArmor sudo

Author: playday3008

scripts/run-docker.sh

@@ -53,7 +53,6 @@ _show_usage() {
 	echo "                                    running the command in the container"
 	echo "  TERMUX_CONTAINER_SUDO             Privilege escalation command to use for"
 	echo "                                    container commands, e.g. 'sudo', 'doas'"
-	echo "                                    (Docker only, empty by default)"
 	echo ""
 	echo ""
 	echo "Kindly note that:"
@@ -167,7 +166,14 @@ if [ "$RUNTIME" = "docker" ]; then
 		APPARMOR_PARSER="apparmor_parser"
 	fi
 
-	if [ -z "$APPARMOR_PARSER" ] || ! $SUDO aa-status --enabled; then
+	APPARMOR_SUDO=""
+	if command -v sudo > /dev/null; then
+		APPARMOR_SUDO="sudo"
+	elif command -v doas > /dev/null; then
+		APPARMOR_SUDO="doas"
+	fi
+
+	if [ -z "$APPARMOR_PARSER" ] || ! $APPARMOR_SUDO aa-status --enabled; then
 		echo "WARNING: apparmor_parser not found, AppArmor profiles will not be loaded!"
 		echo "         This is not recommended, as it may cause security issues and unexpected behavior"
 		echo "         Avoid executing untrusted code in the container"
@@ -181,7 +187,7 @@ if [ "$RUNTIME" = "docker" ]; then
 			if [ -n "$msg" ]; then
 				echo "$msg..."
 			fi
-			cat "$profile_path" | sed -e "s/{{CONTAINER_NAME}}/$CONTAINER_NAME/g" | $SUDO "$APPARMOR_PARSER" -rK
+			cat "$profile_path" | sed -e "s/{{CONTAINER_NAME}}/$CONTAINER_NAME/g" | $APPARMOR_SUDO "$APPARMOR_PARSER" -rK
 		fi
 	}