apparmor: oops on boot if parameters set on grub command line
Bug #1678048 reported by
John Johansen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Xenial |
Incomplete
|
Undecided
|
Unassigned | ||
Yakkety |
Won't Fix
|
Undecided
|
Unassigned | ||
Zesty |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
When an apparmor parameter is set on the grub kernel line it results in an oops and failure to boot.
eg. setting
apparmor.
will cause the kernel to fail to boot.
CVE References
Changed in linux (Ubuntu Zesty): | |
status: | Incomplete → Fix Committed |
To post a comment you must log in.
This is because boot params are processed before apparmor is fully initialized and policy_ view_capable( ) will oops because the rootns is not setup.
We should by-pass policy_ view_capable( ) for params being set at boot.