AppArmor

  1. Bug #1432045
  2. Activity log

Activity log for bug #1432045

Date Who What changed Old value New value Message
2015-03-13 20:42:22 Tyler Hicks bug added bug
2015-03-13 21:54:58 Tyler Hicks description $ echo "/t { pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 422b222b6608dff7aca3420062aad3db - $ echo "/t { audit pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 422b222b6608dff7aca3420062aad3db - $ echo "/t { audit deny pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 9e598c327781b16acdab2d3e939279ec - Note that the audit modifier doesn't change the binary policy file but the audit deny modifier does. $ echo "/t { pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 422b222b6608dff7aca3420062aad3db - $ echo "/t { audit pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 422b222b6608dff7aca3420062aad3db - $ echo "/t { audit deny pivot_root oldroot=/ /a, }" | apparmor_parser -qS | md5sum 9e598c327781b16acdab2d3e939279ec - Note that the audit modifier doesn't change the binary policy file but the audit deny modifier does. Also, the binary policy file changes as expected on "audit pivot_root," and "audit pivot_root oldroot=/,". That is, this bug only seems to happen when oldroot and newroot are both specified.
2015-03-23 22:51:29 Steve Beattie bug task added apparmor (Ubuntu)
2015-03-30 17:20:13 Launchpad Janitor branch linked lp:ubuntu/vivid-proposed/apparmor
2015-03-30 22:11:35 Launchpad Janitor apparmor (Ubuntu): status New Fix Released
2015-04-01 08:06:29 Steve Beattie apparmor: status Confirmed Fix Committed
2015-04-01 08:06:33 Steve Beattie apparmor: milestone 2.9.2
2015-04-24 01:15:44 Steve Beattie apparmor: status Fix Committed Fix Released