We need to understand the implications of this.
If you install coreutils-from-gnu, you get these symlinks:
/usr/bin/<tool> -> gnu<tool>
If you install coreutils-from-uutils, you get these other symlinks:
/usr/bin/<tool> -> /usr/lib/cargo/bin/coreutils/<tool>
And that last ..../coreutils/<tool> is a hardlink.
The implication is for apparmor profiles that reference
/{usr/,}bin/<tool>. This rule alone won't work anymore, because apparmor
resolves the symlink and only cares about its target.
Does this mean we need to duplicate all such rules?
I.e.:
/{usr/,}bin/<tool>
Also needs:
/{usr/,}lib/cargo/bin/coreutils/<tool>
/{usr/,}bin/gnu<tool>
That doesn't look good, are there other options?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2123870
Title:
apparmor wg-quick profile incompatible with gnu-coreutils symlinked
binaries
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2123870/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
