AppArmor

temporary cache file not cleaned up when using --add on a loaded profile

Bug #1820124 reported by Jamie Strandboge
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
AppArmor
New
Undecided
Unassigned

Bug Description

# setup with 2.13.2
$ mkdir -p /tmp/aa/profiles /tmp/aa/cache
$ cp /etc/apparmor.d/sbin.dhclient /tmp/aa/profiles/
$ sudo apparmor_parser --remove /tmp/aa/profiles/sbin.dhclient
$ sudo ls /tmp/aa/cache/*
ls: cannot access '/tmp/aa/cache/*': No such file or directory

# load the profile
$ sudo apparmor_parser --cache-loc=/tmp/aa/cache --write-cache --add /tmp/aa/profiles/sbin.dhclient
$ sudo ls /tmp/aa/cache/*
sbin.dhclient

# try to --add again
$ sudo apparmor_parser --cache-loc=/tmp/aa/cache --write-cache --add /tmp/aa/profiles/sbin.dhclient
apparmor_parser: Unable to add "/sbin/dhclient". Profile already exists
$ sudo ls /tmp/aa/cache/*
sbin.dhclient sbin.dhclient-ePnXLt

I saw this behavior with 2.12 as well.

Tags: aa-parser
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.