AppArmor

No policy for tcpdump -j option (time stamp type)

Bug #1229664 reported by Graeme Hewson
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
AppArmor
Invalid
Undecided
Unassigned
tcpdump (Ubuntu)
Fix Released
Undecided
Jamie Strandboge

Bug Description

The tcpdump -J option to list the supported time stamp types is allowed:

# tcpdump -i eth0 -J
Time stamp types for eth0 (use option -j to set):
  host (Host)
  adapter (Adapter)
  adapter_unsynced (Adapter, not synced with system time)

However, the -j option for other than the default, host, is not allowed:

# tcpdump -i eth0 -j adapter
tcpdump: eth0: You don't have permission to capture on that device
(You don't have permission to capture on that device)

The attached patch adds capability net_admin to allow -j:

# tcpdump -i eth0 -j adapter
tcpdump: WARNING: eth0: That type of time stamp is not supported by that device
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes

Revision history for this message
Graeme Hewson (ghewson) wrote :
Graeme Hewson (ghewson)
tags: added: patch
Revision history for this message
Steve Beattie (sbeattie) wrote :

Hi Graeme,

Sorry for the delay in handling this bug. AppArmor upstream does not provide the tcpdump profile; this actually provided by the tcpdump package in Ubuntu. Moving the bug there.

Thanks!

tags: added: apparmor trusty
Changed in apparmor:
status: New → Invalid
Changed in tcpdump (Ubuntu):
status: New → Confirmed
Revision history for this message
Ubuntu Foundations Team Bug Bot (crichton) wrote :

The attachment "capability net_admin for tcpdump" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team.

[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.]

Jamie Strandboge (jdstrand)
Changed in tcpdump (Ubuntu):
status: Confirmed → In Progress
assignee: nobody → Jamie Strandboge (jdstrand)
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package tcpdump - 4.5.1-2ubuntu2

---------------
tcpdump (4.5.1-2ubuntu2) utopic; urgency=medium

  * debian/usr.sbin.tcpdump: allow capability net_admin to support '-j'. Patch
    thanks to Graeme Hewson. (LP: #1229664)
 -- Jamie Strandboge <email address hidden> Thu, 26 Jun 2014 08:08:07 -0500

Changed in tcpdump (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.