[pkg-apparmor] Bug#928160
miteigi
miteigi at protonmail.ch
Sat Jul 27 16:53:03 BST 2019
Greetings,
I'd like to mention that hoxp18 (and I) encountered the bug not when activating
these extra profiles, but when we used aa-genprof on completely unrelated
programs. In other words, it (probably) affects anyone who uses aa-genprof and
has the apparmor-profiles package installed, not only users of these profiles.
I suggest putting an extra '#' before the line responsible for inclusion of
the local profile, making that line a comment — same to the approach in
/usr/share/apparmor/extra-profiles/usr.lib.firefox.firefox .
A little more conjecture (could be wrong): I guess the whole thing
is that aa-autodep (and aa-genprof) scans all the profiles under
/usr/share/apparmor/extra-profiles , which is the "inactive_profiledir" defined
in /etc/apparmor/logprof.conf , and exits with error when it encounters a
line that includes a non-existent <local/XYZ>.
Kind regards,
miteigi
More information about the pkg-apparmor-team
mailing list