[pkg-apparmor] Bug#835826: Bug#835826: Bug#835826: apparmor-profiles: usr.lib.dovecot.imap issue?
Seth Arnold
seth.arnold at canonical.com
Mon Aug 29 17:39:42 UTC 2016
On Mon, Aug 29, 2016 at 09:01:08AM +0200, Félix Sipma wrote:
> The logs are quite large... Here are the lines (only from the last minute)
> without any "//null-*" in the profile name:
>
> Aug 29 08:50:02 laptop kernel: audit_printk_skb: 1218 callbacks suppressed
> Aug 29 08:50:07 laptop audit[27369]: AVC apparmor="ALLOWED" operation="open" profile="/usr/lib/dovecot/imap" name="/etc/ld.so.preload" pid=27369 comm="imap" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
> Aug 29 08:50:07 laptop kernel: audit_printk_skb: 1218 callbacks suppressed
I suspect this computer is performing pretty poorly at this point, it
looks like a few thousand AppArmor issues being ALLOWED each second.
A full repair is probably more than a bugmail should encourage; if you've
got time to head to #apparmor on irc.oftc.net we'd be happy to walk you
through fixing this up.
A quick first step would add:
/etc/ld.so.preload r,
to the:
/etc/apparmor.d/abstractions/base
file. (This change was recently made upstream: see
http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/revision/3497
for the patch.)
Then reload at least your dovecot imap profile, probably something like:
apparmor_parser --reload /etc/apparmor.d/usr.lib.dovecot.imap
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-apparmor-team/attachments/20160829/0af4ae80/attachment.sig>
More information about the pkg-apparmor-team
mailing list