[Bug 811885] Re: AppArmor profile for Dropbox
[Expired for apparmor (Ubuntu) because there has been no activity for 60 days.] ** Changed in: apparmor (Ubuntu) Status: Incomplete => Expired -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
** Tags removed: patch ** Tags added: aa-policy -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
This should be submitted to the apparmor mailing list for inclusion in the apparmor-profiles repository. See http://wiki.apparmor.net/index.php/Profiles#How_to_contribute_AppArmor_profiles for details. ** Changed in: apparmor (Ubuntu) Status: Triaged => Incomplete -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
The attachment "Patch to allow gpg execution." seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team. [This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.] ** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
Also, concerning user home, after install... [17945.525880] type=1400 audit(1371666495.611:592): apparmor="DENIED" operation="file_mmap" parent=15119 profile="/usr/bin/dropbox" name="/tmp/ffiG0whfw" pid=15122 comm="dropbox" requested_mask="m" denied_mask="m" fsuid=1000 ouid=1000 [17945.525947] type=1400 audit(1371666495.611:593): apparmor="DENIED" operation="file_mmap" parent=15119 profile="/usr/bin/dropbox" name="/var/tmp/ffiigYpUb" pid=15122 comm="dropbox" requested_mask="m" denied_mask="m" fsuid=1000 ouid=1000 [17945.525974] type=1400 audit(1371666495.611:594): apparmor="DENIED" operation="mknod" parent=15119 profile="/usr/bin/dropbox" name="/run/shm/ffidPLyzR" pid=15122 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [17945.525990] type=1400 audit(1371666495.611:595): apparmor="DENIED" operation="mknod" parent=15119 profile="/usr/bin/dropbox" name="/home/leonardo/ffiUuPHex" pid=15122 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 BTW: In enforced mode, dropbox even finishes the installation. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
BTW, still missing to audit: [14736.692875] type=1400 audit(1371663286.779:493): apparmor="DENIED" operation="mknod" parent=12161 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/tarfile.pyc" pid=12779 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14736.710356] type=1400 audit(1371663286.795:494): apparmor="DENIED" operation="mknod" parent=12161 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/contextlib.pyc" pid=12779 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14747.253847] type=1400 audit(1371663297.339:495): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/tarfile.pyc" pid=12836 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14747.269286] type=1400 audit(1371663297.355:496): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/contextlib.pyc" pid=12836 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14747.981048] type=1400 audit(1371663298.067:497): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12836 comm="dropbox" requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14747.981282] type=1400 audit(1371663298.067:498): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12836 comm="dropbox" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 [14747.981478] type=1400 audit(1371663298.067:499): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12836 comm="dropbox" requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14747.981523] type=1400 audit(1371663298.067:500): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12836 comm="dropbox" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 [14747.989215] type=1400 audit(1371663298.075:501): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12839 comm=64636F6E6620776F726B6572 requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14747.989301] type=1400 audit(1371663298.075:502): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12839 comm=64636F6E6620776F726B6572 requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 [14748.008978] type=1400 audit(1371663298.095:503): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/webbrowser.pyc" pid=12836 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14748.040182] type=1400 audit(1371663298.127:504): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/shlex.pyc" pid=12836 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14829.134132] type=1400 audit(1371663379.219:505): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/tarfile.pyc" pid=12923 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14829.193736] type=1400 audit(1371663379.279:506): apparmor="DENIED" operation="mknod" parent=1 profile="/usr/bin/dropbox" name="/usr/lib/python2.7/contextlib.pyc" pid=12923 comm="dropbox" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 [14829.283584] type=1400 audit(1371663379.367:507): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12923 comm="dropbox" requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14829.283817] type=1400 audit(1371663379.367:508): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12923 comm="dropbox" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 [14829.284082] type=1400 audit(1371663379.371:509): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12923 comm="dropbox" requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14829.284343] type=1400 audit(1371663379.371:510): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12923 comm="dropbox" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 [14829.293467] type=1400 audit(1371663379.379:511): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/run/user/leonardo/dconf/user" pid=12926 comm=64636F6E6620776F726B6572 requested_mask="rwc" denied_mask="rwc" fsuid=1000 ouid=1000 [14829.296535] type=1400 audit(1371663379.383:512): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/home/leonardo/.config/dconf/user" pid=12926 comm=64636F6E6620776F726B6572 re
[Bug 811885] Re: AppArmor profile for Dropbox
Using python-gpgme to check files ran into: [15477.446201] type=1400 audit(1371664027.531:515): apparmor="DENIED" operation="exec" parent=14625 profile="/usr/bin/dropbox" name="/usr/bin/gpg" pid=14626 comm="dropbox" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0 At install at least. Changing local, patch attached.?field.comment=Using python-gpgme to check files ran into: [15477.446201] type=1400 audit(1371664027.531:515): apparmor="DENIED" operation="exec" parent=14625 profile="/usr/bin/dropbox" name="/usr/bin/gpg" pid=14626 comm="dropbox" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0 At install at least. Changing local, patch attached. ** Patch added: "Patch to allow gpg execution." https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+attachment/3707490/+files/usr.bin.dropbox.diff -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
Tyrael, please check the attached profile. It works on 12.04 and contains some minor changed compared to the last version. ** Attachment added: "usr.bin.dropbox" https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+attachment/3154927/+files/usr.bin.dropbox -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
Hi, I have upgraded to 12.04 and Dropbox doesn't start. It complains about missing schemas. ype=1400 audit(1337510124.081:36): apparmor="DENIED" operation="open" parent=1 profile="/usr/bin/dropbox" name="/usr/share/glib-2.0/schemas/gschemas.compiled" pid=5659 comm="dropbox" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
Another update. Dropbox needs permissions for @{HOME}/dropbox.tar.gz in case you let the daemon do the auto update. ** Attachment added: "usr.bin.dropbox" https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+attachment/2292313/+files/usr.bin.dropbox -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
The last version missed that Dropbox needs sys_ptrace permissions to access files in /proc/. I attached a new version. ** Attachment added: "usr.bin.dropbox" https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+attachment/2220069/+files/usr.bin.dropbox -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
Thank you for using Ubuntu and submitting this profile. I suggest that you submit this to the apparmor mailing list as per: https://lists.ubuntu.com/archives/ubuntu-devel/2011-July/033656.html This will allow more people to comment and iterate on the profile. ** Changed in: apparmor (Ubuntu) Importance: Undecided => Wishlist ** Changed in: apparmor (Ubuntu) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 811885] Re: AppArmor profile for Dropbox
** Attachment added: "usr.bin.dropbox" https://bugs.launchpad.net/bugs/811885/+attachment/2213270/+files/usr.bin.dropbox -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/811885 Title: AppArmor profile for Dropbox To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/811885/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs