[Bug 564316] New: apparmor sometimes misses system events on profile creation
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c0 Summary: apparmor sometimes misses system events on profile creation Classification: openSUSE Product: openSUSE 11.2 Version: Final Platform: All OS/Version: openSUSE 11.2 Status: NEW Severity: Normal Priority: P5 - None Component: AppArmor AssignedTo: jeffm@novell.com ReportedBy: estellnb@gmail.com QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; de; rv:1.9.1.5) Gecko/20091103 SUSE/3.5.5-1.1.2 Firefox/3.5.5 Creating a profile the only for /usr/bin/kopete the only output was: # Last Modified: Sun Dec 13 13:43:10 2009 #include <tunables/global> /usr/bin/kopete flags=(complain) { #include <abstractions/base> #include <abstractions/nameservice> owner /home/*/.cache/kopete/** rw, /proc/*/net/* r, } However on re-creation it showed up much more. Apparmor sometimes seems to miss system events on profile creation. Reproducible: Sometimes -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c1 --- Comment #1 from Elmar Stellnberger <estellnb@gmail.com> 2010-01-02 20:19:20 UTC --- What about this bug? Apparmor can only be used to a very limited extent if you can not create profiles on your own because openSUSE does not ship with profiles for the most important programs. Now that Apparmor has been ported to kernel-2.6.32 we need to get the relevant bugs resolved in order to make use of Apparmor. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c2 --- Comment #2 from Jeff Mahoney <jeffm@novell.com> 2010-01-21 19:25:57 UTC --- The utils were lacking support for the path security_operations and the exec event. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c3 --- Comment #3 from Jeff Mahoney <jeffm@novell.com> 2010-01-21 19:28:25 UTC --- Created an attachment (id=338094) --> (http://bugzilla.novell.com/attachment.cgi?id=338094) Updated apparmor-utils This version of apparmor-utils contains the regexes for the updated operations. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c4 Jeff Mahoney <jeffm@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |estellnb@gmail.com --- Comment #4 from Jeff Mahoney <jeffm@novell.com> 2010-01-21 19:29:07 UTC --- Can you give this a test run? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c5 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard| |maint:released:11.2:32215 --- Comment #5 from Swamp Workflow Management <swamp@suse.com> 2010-04-06 11:53:51 UTC --- Update released for: apparmor-parser, apparmor-parser-debuginfo, apparmor-parser-debugsource, apparmor-utils Products: openSUSE 11.2 (debug, i586, x86_64) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c6 --- Comment #6 from Elmar Stellnberger <estellnb@gmail.com> 2010-07-05 12:53:07 UTC --- Am going to give this a test in short. Sorry for not getting to test it sooner (have hoped to go online with 11.2 but will perform an offline test now.). Nonetheless it would perhaps be a good start to resolve Bug 619893, a more basic issue with Apparmor first. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c7 Elmar Stellnberger <estellnb@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED InfoProvider|estellnb@gmail.com | Resolution| |WORKSFORME --- Comment #7 from Elmar Stellnberger <estellnb@gmail.com> 2010-07-07 11:48:40 UTC --- Please resolve bug 619893 first. It is more basic. There is not much sense in generating new profiles as long as existing ones don`t work. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c8 Elmar Stellnberger <estellnb@gmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WORKSFORME | --- Comment #8 from Elmar Stellnberger <estellnb@gmail.com> 2010-07-08 12:36:11 UTC --- Will test creating new Apparmor profiles as soon as possible; this evening or so. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=564316 https://bugzilla.novell.com/show_bug.cgi?id=564316#c Jeff Mahoney <jeffm@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO InfoProvider| |estellnb@gmail.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=564316 https://bugzilla.novell.com/show_bug.cgi?id=564316#c9 Jeff Mahoney <jeffm@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED InfoProvider|estellnb@gmail.com | Resolution| |FIXED --- Comment #9 from Jeff Mahoney <jeffm@novell.com> 2011-01-24 14:43:58 UTC --- Closing as fixed. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=564316 http://bugzilla.novell.com/show_bug.cgi?id=564316#c10 --- Comment #10 from Bernhard Wiedemann <bwiedemann@suse.com> --- This is an autogenerated message for OBS integration: This bug (564316) was mentioned in https://build.opensuse.org/request/show/30260 11.2:Test / apparmor-utils -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com