[Kernel-packages] [Bug 2103578] Re: AppArmor notifications loose state when listener crashes

Wed, 19 Mar 2025 00:00:58 -0700 

** Also affects: apparmor (Ubuntu)
   Importance: Undecided
       Status: New

** Changed in: linux (Ubuntu)
       Status: New => In Progress

** Changed in: apparmor (Ubuntu)
       Status: New => In Progress

** Changed in: linux (Ubuntu)
     Assignee: (unassigned) => John Johansen (jjohansen)

** Changed in: apparmor (Ubuntu)
     Assignee: (unassigned) => John Johansen (jjohansen)

** Also affects: apparmor (Ubuntu Plucky)
   Importance: Undecided
     Assignee: John Johansen (jjohansen)
       Status: In Progress

** Also affects: linux (Ubuntu Plucky)
   Importance: Undecided
     Assignee: John Johansen (jjohansen)
       Status: In Progress

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/2103578

Title:
  AppArmor notifications loose state when listener crashes

Status in apparmor package in Ubuntu:
  In Progress
Status in linux package in Ubuntu:
  In Progress
Status in apparmor source package in Plucky:
  In Progress
Status in linux source package in Plucky:
  In Progress

Bug description:
  When snapd crashes or restarts it closes its connection to the kernel
  and the listener state, and all existing notifications are lost.

  This is a problem for snapd as it means prompt information is lost,
  causing failures for the user, and a need to re-prompt the user. The
  user experience is also poor, as this causes extra prompts, denials
  after a prompt was allowed and general poor user experience.

  Prompts that occur during a crash/restart are immediately denied
  leading to further issues.

  While snapd could store some of the lost state for each prompt
  received, the only way to ensure notification received during crash
  recovery or restart is to have the kernel listener to continue to
  queue notifications.

  This requires apparmor to gain the ability to delay listener cleanup
  and continue to receive notifications while snapd restarts.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2103578/+subscriptions


-- 
Mailing list: https://launchpad.net/~kernel-packages
Post to     : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help   : https://help.launchpad.net/ListHelp

Reply via email to