You have been subscribed to a public bug:

I am running xubuntu 2604, with apparmor activated
the aa-logprof tool crashes with the following traceback :

root@EliteBook-ubuntu:~# aa-logprof 
Updating AppArmor profiles in /etc/apparmor.d.
Reading log entries from /var/log/audit/audit.log.
Traceback (most recent call last):
  File "/usr/sbin/aa-logprof", line 61, in <module>
    apparmor.do_logprof_pass(logmark, out_dir=args.output_dir)
    ~~~~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 1497, in 
do_logprof_pass
    log_dict = collapse_log(hashlog)
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 1599, in 
collapse_log
    for rule in ev_class.from_hashlog(hashlog[aamode][full_profile][ev_type]):
                ~~~~~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/apparmor/rule/file.py", line 500, in 
from_hashlog
    yield cls(path, mode, None, FileRule.ALL, owner=owner, log_event=True)
          ~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/apparmor/rule/file.py", line 67, in 
__init__
    self.path,   self.all_paths   = self._aare_or_all(path,   'path',   True,  
log_event)  # noqa: E221
                                    
~~~~~~~~~~~~~~~~~^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/lib/python3/dist-packages/apparmor/rule/__init__.py", line 94, in 
_aare_or_all
    raise AppArmorBug(
        'Passed unknown %(partname)s to %(classname)s: %(rulepart)s'
        % {'partname': partname, 'classname': self.__class__.__name__, 
'rulepart': str(rulepart)})
apparmor.common.AppArmorBug: Passed unknown path to FileRule: None

An unexpected error occurred!
--------------------------------

I have isolated one audit log line which crashes the tool :
type=AVC msg=audit(1779976535.195:1855): apparmor="DENIED" operation="open" 
class="file" profile="bwrap" pid=8962 comm="bwrap" requested_mask="wr" 
denied_mask="wr" fsuid=1000 ouid=0FSUID="eric" OUID="root"

the apparmor comes from the /etc/apparmor.d/bwrap-userns-restrict file,
from apparmor package, unmodified

the problem disappear if I remove the /etc/apparmor.d/bwrap-userns-
restrict file

** Affects: ubuntu
     Importance: Undecided
         Status: New

-- 
apparmor aa-logprof crashes on bwrap profile
https://bugs.launchpad.net/bugs/2158708
You received this bug notification because you are a member of Ubuntu Bugs, 
which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to