AppArmor

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1742427
Comment #1

Comment 1 for bug 1742427

Revision history for this message

intrigeri (intrigeri) wrote on 2018-06-12: Re: apparmor_parser with --write-cache should not delete CACHEDIR.TAG

The original problem this bug was about is gone. Actually, now that the multicache went in, we would instead install CACHEDIR.TAG in the cache-loc (/etc/apparmor.d/cache.d/CACHEDIR.TAG). It will apply recursively to all the actual cache sub-directories.

But the same practical problem comes back if using "apparmor_parser --purge-cache", which I would like to do on Debian scripts instead of having to maintain a shell implementation that does the same module it leaves CACHEDIR.TAG alone.

# touch /etc/apparmor.d/cache.d/CACHEDIR.TAG
# apparmor_parser --purge-cache
# ls /etc/apparmor.d/cache.d/CACHEDIR.TAG
ls: cannot access '/etc/apparmor.d/cache.d/CACHEDIR.TAG': No such file or directory

So, could "apparmor_parser --purge-cache" avoid deleting /etc/apparmor.d/cache.d/CACHEDIR.TAG?