This bug was fixed in the package apparmor - 2.10.95-0ubuntu2.5~14.04.1
---
apparmor (2.10.95-0ubuntu2.5~14.04.1) trusty; urgency=medium
* Bring apparmor 2.10.95-0ubuntu2.5, from Ubuntu 16.04, to Ubuntu 14.04.
- This allows for proper snap confinement on Ubuntu 14.04 when using
This bug was fixed in the package apparmor - 2.10.95-0ubuntu1
---
apparmor (2.10.95-0ubuntu1) xenial; urgency=medium
* Update to apparmor 2.10.95 (2.11 Beta 1) (LP: #1561762)
- Allow Apache prefork profile to chown(2) files (LP: #1210514)
- Allow deluge-gtk and
Ash,
your patch was accepted and forwarded to the list
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1272028
Title:
remount, not honored on bind mounts
To manage notifications about this bug go
John,
Sure thing. Here's my /sys/kernel/security/apparmor/features:
capability caps domain file mount namespaces network policy
rlimit
The profile dump is attached. Thanks for having a look! I was just
starting to trawl through the source to see if it was something I could
patch myself,
I've attached a patch against the 2.9 branch that's working for me. I'm
allowing rbind as well as bind because that's the part of the actual
call that caused me to discover this. It looks like an equivalent change
could be made against master as well:
http://bazaar.launchpad.net/~apparmor-
Hmm, I was scp'ing binaries around and I seem to have broken
apparmor_parser on that box at the moment (glibc conflicts - I copied a
build from the wrong box by mistake).
I'm travelling over the weekend and early next week - I'll upload it as
soon as I have a chance to get that working again.
--
Ash,
can you attach the /etc/apparmor.d/cache/.features file from your system
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1272028
Title:
remount, not honored on bind mounts
To manage
I just hit this myself with AppArmor 2.9.1 in Debian wheezy. Has this
been fixed upstream? I've attached a minimal reproduction.
** Attachment added: "minimal reproduction: application and apparmor profile"
Ash,
can you provide the output of
ls /sys/kernel/security/apparmor/features
and
apparmor_parser -S
the profile binary dump is to just double check that it is the same as what I
get locally
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
It's possible that this is a part of the patchset still making its way
upstream.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1272028
Title:
remount, not honored on bind mounts
To manage
[Expired for apparmor (Ubuntu) because there has been no activity for 60
days.]
** Changed in: apparmor (Ubuntu)
Status: Incomplete = Expired
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
[Expired for apparmor (Ubuntu Precise) because there has been no
activity for 60 days.]
** Changed in: apparmor (Ubuntu Precise)
Status: Incomplete = Expired
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
[Expired for apparmor (Ubuntu Trusty) because there has been no activity
for 60 days.]
** Changed in: apparmor (Ubuntu Trusty)
Status: Incomplete = Expired
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
[Expired for apparmor (Ubuntu Utopic) because there has been no activity
for 60 days.]
** Changed in: apparmor (Ubuntu Utopic)
Status: Incomplete = Expired
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Is this still an issue for you on 14.10?
** No longer affects: apparmor (Ubuntu Saucy)
** Changed in: apparmor (Ubuntu)
Status: New = Incomplete
** Changed in: apparmor (Ubuntu Precise)
Status: New = Incomplete
** Changed in: apparmor (Ubuntu Trusty)
Status: New =
** Also affects: apparmor (Ubuntu Utopic)
Importance: Undecided
Status: Incomplete
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1272028
Title:
remount, not honored on bind mounts
To
** Summary changed:
- remount, not honored
+ remount, not honored on bind mounts
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1272028
Title:
remount, not honored on bind mounts
To manage
17 matches
Mail list logo
