This bug was fixed in the package linux - 3.11.0-15.23
---
linux (3.11.0-15.23) saucy; urgency=low
[Brad Figg]
* Release Tracking Bug
- LP: #1259259
[ Tim Gardner ]
* [Config] Build-in ohci-pci
- LP: #1244176
linux (3.11.0-15.22) saucy; urgency=low
[Brad Figg]
Hi, this fixed it for me on saucy too, using linux-
image-3.11.0-15-generic from -proposed. Before this kernel update, the
virsh blockcopy would not work due to being blocked by apparmor.
Regards,
Tim Miller Dyck
--
You received this bug notification because you are a member of Ubuntu
Bugs, whic
Verified here on saucy, thanks!
** Tags removed: verification-needed-saucy
** Tags added: verification-done
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subjec
This bug is awaiting verification that the kernel in -proposed solves
the problem. Please test the kernel and update this bug with the
results. If the problem is solved, change the tag 'verification-needed-
saucy' to 'verification-done-saucy'.
If verification is not done by 5 working days from tod
** Branch linked: lp:ubuntu/precise-proposed/linux-lts-saucy
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subject to reloaded policies
To manage notifications
** Changed in: linux (Ubuntu Trusty)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subject to reloaded policies
To mana
** Also affects: apparmor
Importance: Undecided
Status: New
** Bug watch added: Email to apparmor@lists #
mailto:appar...@lists.ubuntu.com
** Also affects: linux via
mailto:appar...@lists.ubuntu.com
Importance: Undecided
Status: New
** Changed in: linux
Remote watch: E
** Changed in: apparmor (Ubuntu Saucy)
Status: Confirmed => Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subject to reloaded policies
To m
Great news - libvirt bug 1248577 is also fixed with this kernel!
Thanks, John.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subject to reloaded policies
To ma
> http://people.canonical.com/~jj/linux-
image-3.11.0-13-generic_3.11.0-13.20_amd64.deb
That passes my test case, now testing libvirt-qemu (the dup'd bug)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs
I have traced this down to how the cred is being handled in a couple
hooks. So dependent on program access patterns the new profile may or
may not be used. I have placed a test kernel that passes serge's aa_exec
test (for me) on people. Please test and confirm this kernel is working
http://people.
Thanks Serge, you're right, my /tmp/bash tests indicate that the fork()
+ execve() works properly.
Load this profile, cd /tmp ; ./bash -- and then "echo *". You should see a
"*".
/tmp/bash {
/tmp/bash rmix,
/lib/** rm,
/dev/tty rw,
}
Now load this profile:
/tmp/bash {
/tmp/bash rmix,
Quoting Seth Arnold (1236...@bugs.launchpad.net):
> While I get the results you describe with the testcase you've provided,
> I don't think the description is completely accurate.
>
> I performed my testing on:
>
> Linux hunt 3.11.0-12-generic #19-Ubuntu SMP Wed Oct 9 16:20:46 UTC 2013
> x86_64 x
I made some slight adjustments to test.sh and found that the sha1 of the
loaded profile changes after reloading:
# ./test.sh
usr.bin.serge.allow loaded, sha1 7e932d334f64e154a8749ded59787ce0f5dc0785
usr.bin.serge.deny loaded, sha1 7045ef3e6721273fdb0bc8e556f4dd8b7136a7d7
failed
The audit messag
While I get the results you describe with the testcase you've provided,
I don't think the description is completely accurate.
I performed my testing on:
Linux hunt 3.11.0-12-generic #19-Ubuntu SMP Wed Oct 9 16:20:46 UTC 2013
x86_64 x86_64 x86_64 GNU/Linux
I went far simpler:
cp /bin/bash /tmp/
** Tags added: application-confinement
** Also affects: apparmor (Ubuntu Saucy)
Importance: Undecided
Status: New
** Also affects: apparmor (Ubuntu Trusty)
Importance: High
Status: Confirmed
** Changed in: apparmor (Ubuntu Saucy)
Status: New => Confirmed
** Changed in
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: apparmor (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
R
** Changed in: apparmor (Ubuntu)
Importance: Undecided => High
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1236455
Title:
Running tasks are not subject to reloaded policies
To manage notificat
18 matches
Mail list logo
