Sziráki, thanks for filing this bug. I've reviewed your logs and can't
figure out what exactly is wrong:
- Your kernel logs shows over 18000 DENIED accesses requested by
processes executing with a profile that matches
'profile="/usr/lib/firefox/'. Thus it certainly appears that much of
Firefox is executing while confined. Can you provide ps auxwZ output
that shows firefox processes that aren't executing in their profile?
- Your aa-status output shows that Chromium is executing in complain
mode.
- Note that the default AppArmor profile for Firefox is in fact very
permissive. See the /etc/apparmor.d/abstractions/ubuntu-browsers.d/user-
files file for the rules involved.
Can you please identify more concretely what is happening that you feel
is a bug?
Thanks
** Changed in: apparmor (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor in Ubuntu.
https://bugs.launchpad.net/bugs/1661523
Title:
AppArmor profile for Firefox (51.0.1) after took in enforced mode
falls back into unconfined
Status in apparmor package in Ubuntu:
Incomplete
Bug description:
The profile for Firefox after took in enforced mode falls back into
unconfined mode, and download into any selected folders in my account,
not only the allowed one.
lsb_release -rd
Description: Ubuntu 16.04.1 LTS
Release: 16.04
apt-cache policy apparmor
apparmor:
Telepítve: 2.10.95-0ubuntu2.5
Jelölt: 2.10.95-0ubuntu2.5
Verziótáblázat:
*** 2.10.95-0ubuntu2.5 500
500 http://archive.ubuntu.com/ubuntu xenial-updates/main amd64
Packages
100 /var/lib/dpkg/status
2.10.95-0ubuntu2 500
500 http://archive.ubuntu.com/ubuntu xenial/main amd64 Packages
ProblemType: Bug
DistroRelease: Ubuntu 16.04
Package: apparmor 2.10.95-0ubuntu2.5
ProcVersionSignature: Ubuntu 4.8.0-34.36~16.04.1-generic 4.8.11
Uname: Linux 4.8.0-34-generic x86_64
ApportVersion: 2.20.1-0ubuntu2.5
Architecture: amd64
CurrentDesktop: LXDE
Date: Fri Feb 3 09:03:18 2017
InstallationDate: Installed on 2015-09-19 (502 days ago)
InstallationMedia: Ubuntu 14.04.3 LTS "Trusty Tahr" - Beta amd64 (20150805)
ProcEnviron:
LANGUAGE=hu
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=hu_HU.UTF-8
SHELL=/bin/bash
ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-4.8.0-34-generic
root=UUID=429aedd2-83c1-4b53-b23f-c8099109f278 ro quiet splash vt.handoff=7
SourcePackage: apparmor
UpgradeStatus: No upgrade log present (probably fresh install)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1661523/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
