The reason why this doesn't work is because this rule carves out /home:
/[^h][^o][^m][^e]** pix,

We needed to do that for autopilot fakeenv-style tests. I think this
style of test has been abandoned due to other issues though; if that is
true, I can simplify the exec transition rules and remove these
autopilot rules. Nicholas, can you comment?

** Changed in: apparmor-easyprof-ubuntu (Ubuntu)
     Assignee: (unassigned) => Nicholas Skaggs (nskaggs)

** Changed in: apparmor-easyprof-ubuntu (Ubuntu)
       Status: Confirmed => Incomplete

You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor-easyprof-ubuntu
in Ubuntu.

  Cannot run "sudo chroot ." in Terminal

Status in apparmor-easyprof-ubuntu package in Ubuntu:

Bug description:
  The Terminal app is being denied to exec the shell inside a chroot
  when attempting to run sudo chroot .:

  Jan 15 15:09:22 ubuntu-phablet kernel: [66337.301777] type=1400
  audit(1452888562.238:76): apparmor="DENIED" operation="exec"
  profile="com.ubuntu.terminal_terminal_0.7.140" name="/home/phablet
  /vivid-chroot/bin/bash" pid=30547 comm="chroot" requested_mask="x"
  denied_mask="x" fsuid=0 ouid=0

  It would be nice to fix this so that sudo chroot . will work, so that
  people can use a chroot to install additional console apps and tools,
  rather than using writable images, following the instructions on
  AskUbuntu at

To manage notifications about this bug go to:

Mailing list:
Post to     :
Unsubscribe :
More help   :

Reply via email to