pending sru url -> https://people.canonical.com/~ubuntu-archive/pending-
sru.html
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
@{pid} variable broken on systems with
Thanks Eric
ii apparmor 2.10.95-0ubuntu2.6~14.04.3
there is no pre-installed snapd on trusty so i needed to install snapd
first
1. set sysctl
2. add -proposed
3. apt install snapd
4. reboot
5. snap install --dangerous oldverioncore
symptom is gone
Thanks.
**
Hello Andre, or anyone else affected,
Accepted apparmor into trusty-proposed. The package will build now and
be available at
https://launchpad.net/ubuntu/+source/apparmor/2.10.95-0ubuntu2.6~14.04.3
in a few hours, and then in the -proposed repository.
Please help us by testing this new package.
Got a confirmation by SRU verification that the new debdiff was SRU'able.
I have uploaded V2 a few minutes ago. It is now waiting on SRU team for
approval and then should land in trusty-proposed.
- Eric
** Changed in: apparmor (Ubuntu Trusty)
Status: Fix Committed => In Progress
**
I have re-did the SRU by renaming/modifying the existing patch to adapt
to the profile-14.04.
[VALIDATION PRE-UPLOAD]
# dpkg -l | grep -i apparmor
ii apparmor 2.10.95-0ubuntu2.6~14.04.3
amd64user-space parser utility for AppArmor
ii
** Patch added: "profile-14.04-trusty-lp1717714_V2.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5047668/+files/profile-14.04-trusty-lp1717714_V2.debdiff
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed
Hi Seyeong,
I did some verification this morning based on your comment #42.
After some digging... it turns out that the profiles in
"apparmor_src_pkg/profiles/" are not used. if you are attempting to
patch a profile, you must adjust it to patch
apparmor_src_pkg/profiles-14.04/ instead.
In this
Hello, I tested on artful
ii apparmor 2.11.0-2ubuntu17.1
tested same steps as test case section.
Thanks
** Tags removed: verification-needed-artful
** Tags added: verification-done-artful
--
You received this bug notification because you are a member of STS
Hello, I tested on xenial
ii apparmor 2.10.95-0ubuntu2.8
tested same steps as test case section.
there is no DENIED after installing proposed pkg
Thanks
** Tags removed: verification-needed-xenial
** Tags added: verification-done-xenial
--
You received this bug
Hello Andre, or anyone else affected,
Accepted apparmor into trusty-proposed. The package will build now and
be available at
https://launchpad.net/ubuntu/+source/apparmor/2.10.95-0ubuntu2.6~14.04.2
in a few hours, and then in the -proposed repository.
Please help us by testing this new package.
Hello Andre, or anyone else affected,
Accepted apparmor into artful-proposed. The package will build now and
be available at
https://launchpad.net/ubuntu/+source/apparmor/2.11.0-2ubuntu17.1 in a
few hours, and then in the -proposed repository.
Please help us by testing this new package. See
Uploaded for T/X/A.
It is now waiting for the SRU verification team to approve the uploads
for the packages to start building in -proposed.
- Eric
** Tags removed: sts-sponsor-slashd
** Tags added: sts-sponsor-slashd-done
--
You received this bug notification because you are a member of STS
** Changed in: apparmor (Ubuntu Artful)
Status: New => In Progress
** Changed in: apparmor (Ubuntu Xenial)
Status: New => In Progress
** Changed in: apparmor (Ubuntu Trusty)
Status: New => In Progress
--
You received this bug notification because you are a member of STS
This bug was fixed in the package apparmor - 2.11.0-2ubuntu19
---
apparmor (2.11.0-2ubuntu19) bionic; urgency=medium
* d/p/0001-Allow-seven-digit-pid.patch:
On 64bit systems, /proc/sys/kernel/pid_max can be set to PID_MAX_LIMIT,
(2^22), which results in seven digit pids.
About "click-apparmor" bionic/armhf regression.
# Excuses... page
autopkgtest for click-apparmor/0.3.18: amd64: Pass, arm64: Pass, armhf:
Regression ♻ , i386: Pass, ppc64el: Ignored failure, s390x: Always failed
After a discussion with security team and xnox. They are actively trying
to remove
About the "snapd/2.29.4.2+18.04" bionic/ppc64el regression.
# Excuses... page
autopkgtest for snapd/2.29.4.2+18.04: amd64: Ignored failure, arm64: Always
failed, armhf: Pass, i386: Pass, ppc64el: Regression ♻ , s390x: Ignored failure
# Justification of the regression provided by mvo :
the
About the "snapd/2.29.4.2+18.04" bionic/ppc64el regression.
# Excuses... page
autopkgtest for snapd/2.29.4.2+18.04: amd64: Ignored failure, arm64: Always
failed, armhf: Pass, i386: Pass, ppc64el: Regression ♻ , s390x: Ignored failure
# Justification of the regression provided by mvo :
the
** No longer affects: apparmor (Ubuntu Zesty)
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
@{pid} variable broken on systems with pid_max more than 6 digits
Status in
** Changed in: apparmor (Ubuntu Bionic)
Status: In Progress => Fix Committed
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
@{pid} variable broken on systems with
Eric Desrochers:
> The patch for bionic (devel release) has been sponsored but it is stuck in
> bionic-proposed for now waiting for the non amd64/i386 builder to be
> operational -> ppcel64, arm, s390x, ..
FWIW this patch is part of 2.12-1 that I've uploaded to Debian unstable.
No idea how
The patch for bionic (devel release) has been sponsored but it is stuck
in bionic-proposed for now waiting for the non amd64/i386 builder to be
operational -> ppcel64, arm, s390x, ..
#rmadison
apparmor | 2.11.0-2ubuntu18 | bionic | source, amd64, arm64, armhf,
i386, ppc64el, s390x
** Description changed:
[Impact]
If PID is larger than 6 digits apparmor denies process which only affect
64-bit systems[1] where the PID_MAX_LIMIT can be generated up to 7
digits at the maximum.
This fix is committed, but not released. so all supporting version are
affected.
** Changed in: apparmor (Debian)
Status: Unknown => Confirmed
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
@{pid} variable broken on systems with pid_max more than 6
Another verification that IMHO can be done more easily and faster than
the touch approach explain above is to directly change the pid_max and
ns_last_pid via sysctl in the 7 digit range (<4millions), and then try
to reproducer.
For instance:
sysctl -w kernel.pid_max=300
sysctl -w
** Changed in: apparmor (Ubuntu Bionic)
Status: Confirmed => In Progress
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
@{pid} variable broken on systems with pid_max
I have contacted a coredev to hopefully sponsor the development bit
(Bionic) today, so I can proceed with the stable release update myself
next week.
- Eric
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
Attaching "lp1717714_bionic_V2.debdiff":
- Nitpicking stuff related to d/changelog and DEP3 patch header.
** Patch added: "lp1717714_bionic_V2.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5035841/+files/lp1717714_bionic_V2.debdiff
--
You received
** Description changed:
[Impact]
- If PID is larger than 6 digits.
+ If PID is larger than 6 digits apparmor denies process which only affect
+ 64-bit systems[1] where the PID_MAX_LIMIT can be generated up to 7
+ digits at the maximum.
- apparmor denies process.
+ This fix is committed,
** Description changed:
[Impact]
If PID is larger than 6 digits.
apparmor denies process.
this fix is committed, but not released. so all supporting version are
affected.
[Test Case]
1. making pid over 6 digits
- - i used touch command to do it
- 2. snap install
> Not quite sure now if apparmor upstream is found in launchpad[1] or
gitlab[2].
The code moved from bzr to gitlab recently. Bug tracking and
translations are still handled on launchpad.
> I would go with that versionning approach instead:
>
> apparmor | 2.11.0-2ubuntu17.1 | artful
> apparmor |
I note that the Seyeong's Artful debdiff proposed version
"2.11.0-2ubuntu18" and bionic "2.11.0-2ubuntu19"
# Current rmadison output
apparmor | 2.11.0-2ubuntu17 | artful
apparmor | 2.11.0-2ubuntu18 | bionic
Bionic version is good.
No need to change the debdiff,
Meanwhile, please make sure you have submitted the patch to Debian and
link the debbug in this LP.
- Eric
** Changed in: apparmor (Ubuntu Trusty)
Assignee: (unassigned) => Seyeong Kim (xtrusia)
** Changed in: apparmor (Ubuntu Xenial)
Assignee: (unassigned) => Seyeong Kim (xtrusia)
**
Thanks Seyeong !
I'll do a 2nd review when the build farm will be back and will do the
other changes if necessary.
- Eric
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1717714
Title:
** Patch added: "lp1717714_artful.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5033301/+files/lp1717714_artful.debdiff
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
** Patch added: "lp1717714_zesty.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5033300/+files/lp1717714_zesty.debdiff
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
** Patch added: "lp1717714_xenial.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5033299/+files/lp1717714_xenial.debdiff
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
** Patch added: "lp1717714_bionic.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5033302/+files/lp1717714_bionic.debdiff
--
You received this bug notification because you are a member of STS
Sponsors, which is subscribed to the bug report.
** Patch removed: "lp1717714_trusty.debdiff"
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1717714/+attachment/5032828/+files/lp1717714_trusty.debdiff
** Patch removed: "lp1717714_xenial.debdiff"
Not quite sure now if apparmor upstream is found in launchpad[1] or
gitlab[2].
[1] https://launchpad.net/apparmor
[2] https://gitlab.com/apparmor
If it's launchpad then the URL is good.
If #2 & #3 are good (After your confirmation), then only #1, #4 and #5
are missing.
Im simply trying to
I apologize, for #2 above in comment#14, the good commit containing the
fix seems to be "630cb2a981cdc731847e8fdaafc45bcd337fe747", please make
sure #3 "Origin:" reflect that.
- Eric
** Description changed:
[Impact]
If PID is larger than 6 digits.
apparmor denies process.
this
Hi Seyeong,
Here's some sponsoring notes that will require minor change. While
waiting for the build farm ...
#1 - Can you make sure (if not already) to forward/submit the patch to
debian upstream against apparmor ? Which is a requirement for the patch
to land in Ubuntu.
Then we can request a
Hi Seyeong,
As we speak the LP build farm and autopkgtest request.cgi are disabled for
maintenance; no ETA yet.
No new uploads are allowed during this temporary freeze cause by the
maintenance.
We will gladly review your patch when everything will back to normal.
- Eric
--
You received this
** Description changed:
[Impact]
If PID is larger than 6 digits.
apparmor denies process.
this fix is committed, but not released. so all supporting version are
affected.
[Test Case]
1. making pid over 6 digits
- i used touch command to do it
2. snap install
** Also affects: apparmor (Ubuntu Artful)
Importance: Undecided
Status: New
** Also affects: apparmor (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: apparmor (Ubuntu Xenial)
Importance: Undecided
Status: New
** Also affects: apparmor (Ubuntu
** Description changed:
+ [Impact]
+
+ If PID is larger than 6 digits.
+
+ apparmor denies process.
+
+ this fix is committed, but not released. so all supporting version are
+ affected.
+
+ [Test Case]
+
+ 1. making pid over 6 digits
+ - i used touch command to do it
+ 2. snap install
45 matches
Mail list logo