Note that 1240 is an insufficient fix. The next needed fix is:
https://gitlab.com/apparmor/apparmor/-/issues/395
https://gitlab.com/apparmor/apparmor/-/merge_requests/1243/diffs
Otherwise we run into it erroring on "MongoDB" ("MongoDB Compass").
** Bug watch added: gitlab.com/apparmor/apparmor/-/issues #395
https://gitlab.com/apparmor/apparmor/-/issues/395
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor in Ubuntu.
https://bugs.launchpad.net/bugs/2083612
Title:
aa-remove-unknown: I/O error for unconfined profiles
Status in apparmor package in Ubuntu:
Confirmed
Bug description:
On a stock ubuntu 24.04.1 install, running sudo aa-remove-unknown logs
"/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error" for every
unconfined profile it encounters.
I've reproduced this on an Azure stock image with apparmor
4.0.1really4.0.1-0ubuntu0.24.04.3. It matches up with kern.log entries
like
2024-10-03T13:10:50.531829+00:00 mp-test-noble kernel: audit:
type=1400 audit(1727961050.530:331): apparmor="STATUS"
operation="profile_remove" info="profile does not exist" error=-2
profile="unconfined"
name=74757865646F2D636F6E74726F6C2D63656E7465722028756E636F6E66696E656429
pid=8272 comm="aa-remove-unkno"
Nothing relevant in /var/log/apparmor.
Output:
$ sudo aa-remove-unknown
Removing 'wpcom (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing 'wike (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing 'vscode (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
# many times, full output attached
Removing 'balena-etcher (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing 'QtWebEngineProcess (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing 'MongoDB Compass (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing 'Discord (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
Removing '1password (unconfined)'
/usr/sbin/aa-remove-unknown: 112: echo: echo: I/O error
ProblemType: Bug
DistroRelease: Ubuntu 24.04
Package: apparmor 4.0.1really4.0.1-0ubuntu0.24.04.3
ProcVersionSignature: Ubuntu 6.8.0-1015.17-azure 6.8.12
Uname: Linux 6.8.0-1015-azure x86_64
ApportVersion: 2.28.1-0ubuntu3.1
Architecture: amd64
AzureImageoffer: ubuntu-24_04-lts
AzureImagepublisher: canonical
AzureImagesku: server
AzureImageversion: 24.04.202409260
AzureVmsize: Standard_D2s_v3
CasperMD5CheckResult: unknown
CloudArchitecture: x86_64
CloudBuildName: server
CloudID: azure
CloudName: azure
CloudPlatform: azure
CloudRegion: uksouth
CloudSerial: 20240926
CloudSubPlatform: config-disk (/dev/sr0)
Date: Thu Oct 3 13:10:31 2024
ProcEnviron:
LANG=C.UTF-8
PATH=(custom, no user)
SHELL=/bin/bash
TERM=xterm-256color
ProcKernelCmdline: BOOT_IMAGE=/vmlinuz-6.8.0-1015-azure
root=PARTUUID=1a6a002b-5407-43ed-a20a-67c0e584807b ro console=tty1
console=ttyS0 earlyprintk=ttyS0 nvme_core.io_timeout=240 panic=-1
SourcePackage: apparmor
Syslog: 2024-10-03T12:49:13.160018+00:00 mp-test-noble dbus-daemon[1044]:
[system] AppArmor D-Bus mediation is enabled
UpgradeStatus: No upgrade log present (probably fresh install)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2083612/+subscriptions
--
Mailing list: https://launchpad.net/~touch-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~touch-packages
More help : https://help.launchpad.net/ListHelp
