syslog overflowing with apparmor audit ptrace firefox-*bin messages
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
firefox (Ubuntu) |
Triaged
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: apparmor
https:/
1. What you expected to happen
going to the swimming pool
2. What actually happened
System : Ubuntu 10.04 (upgrade) up to date, Kernel is 2.6.32-26-generic, Firefox:
Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.12) Gecko/20101027 Ubuntu/10.04 (lucid) Firefox/3.6.12
syslog is literally overflowing with messages like this (many suppressed):
xxx kernel: [15514.454740] type=1503 audit(128991922
every time a window or tab or something opens.
I added deny capability sys_ptrace, to /etc/apparmor.
and I ran sudo apparmor_parser -r /etc/apparmor.
Nov 16 19:30:13 p-hp-u kernel: [28506.718832] type=1505 audit(128993221
Nov 16 19:30:13 p-hp-u kernel: [28506.719106] type=1505 audit(128993221
Nov 16 19:30:13 p-hp-u kernel: [28506.719488] type=1505 audit(128993221
But the messages continued. Then
2a. close all firefox windows
2b. sudo apparmor_parser -r -W -T /etc/apparmor.
2c. start firefox
Messages continued to continue.
3. The minimal series of steps necessary to make it happen, where step 1 is "start the program"
0 Boot up and Log in
1 Firefoxtrot.
2 read syslog (optional)
Changed in apparmor (Ubuntu): | |
status: | Incomplete → New |
affects: | apparmor (Ubuntu) → firefox (Ubuntu) |
Changed in firefox (Ubuntu): | |
assignee: | Jamie Strandboge (jdstrand) → nobody |
status: | New → Triaged |
tags: | added: apparmor |
As I have introduced this bug on request of a developer, I would appreciate
it got confirmed or triaged status,
some comments,
hopefully a solution.
Thank you.