aa-logprof asks for "a" rule even if "deny w" is present
Bug #1385474 reported by
Christian Boltz
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| AppArmor |
Fix Released
|
Undecided
|
Unassigned | ||
| Ubuntu |
Invalid
|
Undecided
|
Unassigned | ||
Bug Description
From bug 1324608 comment 1:
Additionally problem. When there is an already existing deny rule with a "w" mask
deny /home/*/.profile w,
the "a" mask is not recognized as being matched by it and thus aa-logprof prompts to create a new rule when the permission is already affirmatively denied.
Revision history for this message
| Christian Boltz (cboltz) wrote | #1 |
Revision history for this message
| Tyler Hicks (tyhicks) wrote | #2 |
| Changed in apparmor: | |
| status: | Triaged → Fix Released |
Revision history for this message
| Paul White (paulw2u) wrote | #3 |
| Changed in ubuntu: | |
| status: | New → Invalid |
To post a comment you must log in.
For the records: Even after the rewrite to FileRule, this bug survived.
At least there's a TODO note for it in is_covered_