AppArmor 2.9.2 fails to load multiple profiles

Bug #1455236 reported by Ulrike Uhlig
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
AppArmor
Invalid
Undecided
Unassigned
apparmor (Debian)
Invalid
Undecided
Unassigned
apparmor (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Loading profiles one by one works but this does not:

<pre>
sudo aa-enforce /etc/apparmor.d/torbrowser.*

Setting /etc/apparmor.d/torbrowser.Browser.firefox to enforce mode.
Traceback (most recent call last):
  File "/usr/sbin/aa-enforce", line 30, in <module>
    tool.cmd_enforce()
  File "/usr/lib/python3/dist-packages/apparmor/tools.py", line 153, in cmd_enforce
    apparmor.read_profiles()
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 2572, in read_profiles
    read_profile(profile_dir + '/' + file, True)
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 2598, in read_profile
    profile_data = parse_profile_data(data, file, 0)
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 2853, in parse_profile_data
    store_list_var(filelist[file]['lvar'], list_var, value, var_operation, file)
  File "/usr/lib/python3/dist-packages/apparmor/aa.py", line 3289, in store_list_var
    raise AppArmorException(_('Redefining existing variable %(variable)s: %(value)s in %(file)s') % { 'variable': list_var, 'value': value, 'file': filename })
apparmor.common.AppArmorException: 'Redefining existing variable @{LIBVIRT}: libvirt in /etc/apparmor.d/usr.sbin.libvirtd'
</pre>

Revision history for this message
Christian Boltz (cboltz) wrote :

This report is about AppArmor 2.9.2

tags: added: aa-tools
Revision history for this message
Ulrike Uhlig (u-d) wrote :

Actually this was due to the usage of python3-apparmor 2.9.0.
Installing python3-apparmor 2.9.2 fixed the issue.

Changed in apparmor (Ubuntu):
status: New → Invalid
Changed in apparmor (Debian):
status: New → Invalid
Changed in apparmor:
status: New → Invalid
Revision history for this message
Christian Boltz (cboltz) wrote :

Just for the records - this is a duplicate of bug 1378095

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.