** Description changed: [Impact] - * Users running Saucy or newer kernels on 12.04 LTS release cannot load - AppArmor profiles due to a fixed-size buffer in the apparmor_parser binary. + * Users running Saucy or newer kernels on 12.04 LTS release cannot load + AppArmor profiles due to a fixed-size buffer in the apparmor_parser binary. - * As a result of this failure, lxc could not install, and no programs would - run confined, when a user installed a Saucy or newer kernel. + * As a result of this failure, lxc could not install, and no programs would + run with AppArmor confinement, when a user installed a Saucy or newer kernel. - * This upload cherry picks a fix from Saucy that increases the size of the - fixed buffer from 1024 to 8192 bytes. This is expected to be large enough. + * This upload cherry picks a fix from Saucy that increases the size of the + fixed buffer from 1024 to 8192 bytes. This is expected to be large enough. [Test Case] - * apt-add-repository ppa:ubuntu-x-swat/s-lts-backport - apt-get update - apt-get install linux-generic-lts-saucy - shutdown -r now - /etc/init.d/apparmor reload - apt-get install lxc - aa-status + * apt-add-repository ppa:ubuntu-x-swat/s-lts-backport + apt-get update + apt-get install linux-generic-lts-saucy + shutdown -r now + /etc/init.d/apparmor reload + apt-get install lxc + aa-status - * Without the fix, the reload and install lxc commands should fail, and - aa-status would report no loaded profiles. + * Without the fix, the reload and install lxc commands fail, and + aa-status would report no loaded profiles. - With the fix, the reload and install lxc commands succeed, and - aa-status reports many loaded profiles. + With the fix, the reload and install lxc commands succeed, and + aa-status reports many loaded profiles. [Regression Potential] - * If a future kernel requires more than 8192 bytes of buffer to describe - features, this will again break. The AppArmor 3.0 upstream release is - expected to dynamically allocate the size of this buffer if the buffer - should again prove to be too small, and such a hypothesized patch can be - cherry-picked again. + * If a future kernel requires more than 8192 bytes of buffer to describe + features, this will again break. The AppArmor 3.0 upstream release is + expected to dynamically allocate the size of this buffer if the buffer + should again prove to be too small, and such a hypothesized patch can be + cherry-picked again. [Other Info] - - * I revalidated this bug as well as 982619, 987578, and 1091642. + + * I verified this bug as well as #982619, #987578, and #1091642. Thanks Seth Arnold [Original report] The 0041-parser-fix-flags.patch patch from saucy's apparmor needs to be cherrypicked to precise. Without it, using the saucy upstream kernel, installing lxc gives me a "Feature buffer full" error message, and lxc postinst fails.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1214979 Title: Feature buffer full in precise with LTS kernel To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1214979/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
