Ubuntu
fsprotect package

No networking in Karmic with fsprotect active

Bug #477012 reported by jesbecker
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
fsprotect (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Binary package hint: fsprotect

I have the package fsprotect installed and enabled in Karmic. I am booting with Kernel parameter fsprotect=2GB. However, it appears that dhclient3 will not function when fsprotect is active and the root (/) partition is protected. After logging on, I find that the network manager spin wheel is stuck and eth0 does not have an ip address.

Executing sudo dhclient eth0 give the following error message:
dhclient: error while loading shared libraries: libc.so.6: cannot open shared object file: No such file or directory

Executing sudo locate libc.so.6 shows the following:
/lib/libc.so.6

I can also read the file, so I am unsure what is going on.

Here is what df -h shows:
/dev/sda1 2.0G 4.1M 2.0G 1% /
udev 1006M 220K 1005M 1% /dev
/dev/sda1 67G 2.4G 61G 4% /fsprotect/system
none 2.0G 4.1M 2.0G 1% /fsprotect/tmp
none 1006M 220K 1005M 1% /dev/shm
none 1006M 72K 1005M 1% /var/run
none 1006M 0 1006M 0% /var/lock
none 1006M 0 1006M 0% /lib/init/rw
/dev/sr0 32M 32M 0 100% /media/cdrom0

Here is what mount shows:
/dev/sda1 on / type aufs (rw,errors=remount-ro)
proc on /proc type proc (rw)
none on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type tmpfs (rw,mode=0755)
/dev/sda1 on /fsprotect/system type ext4 (rw)
none on /fsprotect/tmp type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
none on /dev/shm type tmpfs (rw,nosuid,nodev)
none on /var/run type tmpfs (rw,nosuid,mode=0755)
none on /var/lock type tmpfs (rw,noexec,nosuid,nodev)
none on /lib/init/rw type tmpfs (rw,nosuid,mode=0755)
binfmt_misc on /proc/sys/fs/binfmt_misc type binfmt_misc (rw,noexec,nosuid,nodev)
gvfs-fuse-daemon on /home/oitadmin/.gvfs type fuse.gvfs-fuse-daemon (rw,nosuid,nodev,user=oitadmin)
/dev/sr0 on /media/cdrom0 type iso9660 (ro,nosuid,nodev,utf8,user=oitadmin)

Please let me know if there is any additional information I should provide. I am willing to help test and troubleshoot.

Jes

Revision history for this message
jesbecker (jesbecker) wrote :

after reviewing other bugs in regards to live CDs and other packages, I found that apparmor does not work well with stacked and read only files systems. A work around for this bug is to either disable for remove apparmor.

Disable:
You can disable by adding apparmor=0 and security="" as kernel options in your grub boot configuration.

Remove:
You can also choose to remove apparmor by executing: sudo apt-get remove apparmor

This issue seems to affect any program that is protected/enforced by apparmor.

May I suggest that 1. Apparmor is fixed to work in readonly or stacked files systems like (unionfs) or that 2. that the fsprotect package notifies that use that it will not work with apparmor and then give the user the option to remove apparmor.

Changed in fsprotect (Ubuntu):
status: New → Confirmed
Revision history for this message
Josep Pujadas-Jubany (jpujades) wrote :

Similar bug at 12.04 LTS (Precise Pangolin):

https://bugs.launchpad.net/ubuntu/+source/fsprotect/+bug/1007627

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.