Comment 12 for bug 1668892
Revision history for this message
| Tyler Hicks (tyhicks) wrote Re: [Bug 1668892] Re: apparmor package upgrades unload all LXD profiles | #12 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)
On 03/15/2017 01:26 PM, Christian Boltz wrote:
> I'd argue that requiring /bin/bash shouldn't be a real problem, but I'm
> aware that you try to use /bin/sh whenever possible.
It shouldn't but I don't feel comfortable switching between the two
shells when this is supposed to be a minimal change.
> Completely different question: does this bug only affect Ubuntu, or is a
> similar fix needed in rc.apparmor.
> code to unload unknown profiles)
Upstream is affected. The only patches that I've attached so far are for
the upstream project.
The Ubuntu/
patches for that now.
Can you tell me if openSUSE is affected by this bug? A quick test is to do
$ echo "profile test {}" | sudo apparmor_parser -qr
$ sudo grep "test (enforce)" /sys/kernel/
test (enforce)
$ # do whateveris required to restart the apparmor init script/upstart
$ # job/systemd unit that your distro uses
$ sudo grep "test (enforce)" /sys/kernel/
test (enforce)
If the test profile is still loaded, you're not affected. If it was
unloaded, you're affected.