touch-packages team mailing list archive

Thread
Date
[Bug 1319829] Re: aa-genprof will crash when select scan on Ubuntu 14.04 server

To: touch-packages@xxxxxxxxxxxxxxxxxxx
From: markling <1319829@xxxxxxxxxxxxxxxxxx>
Date: Sat, 13 Jun 2015 02:04:03 -0000
Reply-to: Bug 1319829 <1319829@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx
So, yah. I'm getting this error.

But I'm on 14.04 LTS. It's still running the malfunctioning Apparmor
2.8.95~2430. It seems then that fix 2.8.96~2541 was never issued.

Apparmor seems impotent. It seems as though it is impossible to
configure, impossible to use Apparmor to secure a machine running Ubuntu
14.04. Ubuntu 14.04 LTS must therefore be inherently insecure. Otherwise
Apparmor wouldn't be necessary in the first place. Ubuntu Trusty can't
be trusted. Ha ha.

The Ubuntu download page says: "Ubuntu 14.04.2 LTS comes with five years
of security and maintenance updates, guaranteed."

Is that, like, sales twaddle? Do you remember the days when the Linux
crowd used to jeer endlessly at Microsoft security flaws: "Meh,
Microsoft is like sooo rubbish and Linux is sooo superior blah blah
twaddle".

So this is now a year since "Trusty" was released, and eight months
since the Apparmor bugfix was released.

And users are still wasting time trying to get Apparmor to work, wasting
time reporting the bug.

How much time do linux users waste reporting bugs that have already been
fixed but haven't been implemented? You can wave goodbye to a day going
through the process of trying to learn how to use some arcane linux
package, discover it doesn't work, report the bug, and it all be an
utter waste of time because nobody is listening. You can wave goodbye to
hours just getting to grip with and reporting a bug. It happens all the
time. Linux users must be [insert censored word here] because they have
nothing else to do with their free time but wrestle with malfunctioning
software and report bugs. They have no lives. What's worse their efforts
are utterly futile. They are [insert censored word here].

If the Apparmor fix isn't being added to Ubuntu 14.04, then why not
disable Apparmor in the release so people don't waste time trying to get
it to work?

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to apparmor in Ubuntu.
https://bugs.launchpad.net/bugs/1319829

Title:
  aa-genprof will crash when select scan on Ubuntu 14.04 server

Status in AppArmor Linux application security framework:
  Fix Released
Status in apparmor package in Ubuntu:
  Fix Released
Status in apparmor source package in Trusty:
  Confirmed

Bug description:
  [impact]

  This bug makes it difficult for trusty users to use the apparmor policy
  utilities.

  [steps to reproduce]

  See below

  [regression potential]

  This issue is being addressed by updating the python utilities to the
  version in apparmor 2.9.2 as tracked in bug 1449769. This represents are
  large change which would normally be risky; however, these changes are
  isolated to the python utils (so no changes to the policy parser/loader
  or enforcement), there are a large number of bugs that exist in the
  trusty version that make using the tools difficult, so it would be
  difficult to regress further, and the updated version includes many new
  unit tests to try to prevent from regressions from occurring.

  [additional info]

  The python utils testsuite is run as part of the test-apparmor.py test
  script in lp:qa-regression-testing. The test-apparmor.py also has
  additional basic usage tests to ensure that basic functionality is
  maintained. These tests are run as part of the process fro each kernel
  update.

  [original description]

  Operating system : Ubuntu 14.04 LTS x86_64 server

  Command used :

  sudo aa-genprof suricata

  I will be asked to scan or finish, I selected "scan".  Then it
  crashes.

To manage notifications about this bug go to:
https://bugs.launchpad.net/apparmor/+bug/1319829/+subscriptions