Public bug reported:
If a profile contains flags other than 'complain', they are stripped out
when using aa-enforce and aa-complain. Eg:
If profile has:
/usr/lib/chromium-browser/chromium-browser flags=(complain,attach_disconnected)
{...}
After 'sudo aa-enforce /etc/apparmor.d/usr.bin.chromium-browser' it now has:
/usr/lib/chromium-browser/chromium-browser {...}
If profile has:
/usr/lib/chromium-browser/chromium-browser flags=(attach_disconnected) {...}
After 'sudo aa-complain /etc/apparmor.d/usr.bin.chromium-browser' it now has:
/usr/lib/chromium-browser/chromium-browser flags=(complain) {...}
** Affects: apparmor (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/950921
Title:
aa-enforce and aa-complain strip all flags instead of manipulating
'complain'
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/950921/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
