Public bug reported:
Description: Ubuntu Resolute Raccoon (development branch)
Release: 26.04
apparmor:
Installed: 5.0.0~alpha1-0ubuntu9
Candidate: 5.0.0~alpha1-0ubuntu9
Version table:
*** 5.0.0~alpha1-0ubuntu9 500
500 https://archive.ubuntu.com/ubuntu resolute/main amd64 Packages
100 /var/lib/dpkg/status
The usr.lib.libreoffice.program.soffice.bin and tnftp profiles cause apparmor
to fail to start when HOMEDIRS is modified to include nested home directories
like this:
@{HOMEDIRS}+=/home/*/ /net/*/home/
The usr.lib.libreoffice.program.soffice.bin profile would result in an error
like this one:
2025-12-18T16:59:50.215968-05:00 test1 apparmor.systemd[1113]: Too many
states (114347) for type state_t
I changed the following line in usr.lib.libreoffice.program.soffice.bin from:
owner @{libo_user_dirs}/{,**/}lu???????{,?,??,???,????,?????}.tmp rwk,
to:
owner @{libo_user_dirs}/{,**/}lu*.tmp rwk,
and apparmor no longer failed on this profile.
The tnftp profile results in an error like this:
2025-12-19T10:31:39.049639-05:00 test1 apparmor.systemd[87296]: ERROR
processing regexs for profile tnftp, failed to load
Removing "@{HOME}/bin/ @{HOME}/.local/bin/" from the tnftp_rx variable
in the profile allows apparmor to continue without failing.
Both profiles mentioned will work fine as originally installed if I
remove the customizations I've made to HOMEDIRS.
This bug appears to be the same as reported against Debian in these two reports:
[pkg-apparmor] Bug#1108918: apparmor complains "too many states" on start,
hanging boot for 1m25s
Bug#1098838: marked as done (libreoffice-common:
/etc/apparmor.d/usr.lib.libreoffice.program.soffice.bin fails to parse/load
with apparmor 4.1.0-beta5-2)
Thanks!
ProblemType: Bug
DistroRelease: Ubuntu 26.04
Package: apparmor 5.0.0~alpha1-0ubuntu9
ProcVersionSignature: Ubuntu 6.17.0-8.8-generic 6.17.2
Uname: Linux 6.17.0-8-generic x86_64
ApportVersion: 2.33.1-0ubuntu3
Architecture: amd64
CasperMD5CheckResult: pass
CurrentDesktop: ubuntu:GNOME
Date: Fri Dec 19 10:55:34 2025
InstallationDate: Installed on 2025-12-18 (1 days ago)
InstallationMedia: Ubuntu-Server 26.04 LTS "Resolute Raccoon" - Daily amd64
(20251124)
ProcEnviron:
LANG=en_US.UTF-8
PATH=(custom, no user)
SHELL=/bin/bash
TERM=xterm-256color
XDG_RUNTIME_DIR=<set>
ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-6.17.0-8-generic
root=UUID=49634db8-ae96-4ee6-a5ae-3a14e36e3f8c ro nosplash
module_blacklist=bnxt_re module_blacklist=ast
crashkernel=2G-4G:320M,4G-32G:512M,32G-64G:1024M,64G-128G:2048M,128G-:4096M
SourcePackage: apparmor
Syslog:
2025-12-18T20:50:59.651020+00:00 test1 dbus-daemon[870]: [system] AppArmor
D-Bus mediation is enabled
2025-12-18T16:25:34.689003-05:00 test1 dbus-daemon[56321]: [session uid=0
pid=56321 pidfd=5] AppArmor D-Bus mediation is enabled
2025-12-18T16:59:50.241945-05:00 test1 dbus-daemon[1208]: [system] AppArmor
D-Bus mediation is enabled
2025-12-18T16:59:53.681421-05:00 test1 dbus-daemon[2089]: [session uid=60578
pid=2089 pidfd=5] AppArmor D-Bus mediation is enabled
2025-12-18T17:00:31.085621-05:00 test1 dbus-daemon[2701]: [session uid=0
pid=2701 pidfd=5] AppArmor D-Bus mediation is enabled
UpgradeStatus: No upgrade log present (probably fresh install)
mtime.conffile..etc.apparmor.d.tnftp: 2025-12-19T10:33:06.670117
mtime.conffile..etc.apparmor.d.tunables.home.d.site.local:
2025-12-18T16:07:53.332445
** Affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
** Tags: amd64 apport-bug resolute wayland-session
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2136880
Title:
Some apparmor profiles fail when HOMEDIRS has nested home directories
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2136880/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
