[apparmor] 2.5.1 build failure on Arch
John Johansen
john.johansen at canonical.com
Mon Oct 18 17:49:44 BST 2010
On 10/15/2010 09:48 PM, andrew thomas wrote:
>
>
> I am trying to build 2.5.1 on Arch Linux and am getting an error similar to this build:
>
> http://launchpadlibrarian.net/57686487/buildlog_ubuntu-natty-amd64.apparmor_2.5.1-0ubuntu1_FAILEDTOBUILD.txt.gz
>
> It gets through autogen, configure, and make in libapparmor.
>
> Then make in utils, but fails make in parser.
>
> Here is the tail end from
>
> $ cd parser&& /usr/bin/make
>
> http://pastebin.ubuntu.com/514290/
>
> The error message does state that: Kernel needs AppArmor 2.4 compatibility patch.
>
> But, I believe that I applied the proper patches to the kernel.
>
> Any ideas?
>
Hey Andrew it actually built but is failing during the caching function tests. These are run against the current kernel, and it isn't finding the AppArmor 2.4 interface.
You can test for your self by looking for the file /sys/kernel/security/apparmor/profiles if it doesn't exist you don't have the AppArmor 2.4 compatibility patch on your kernel.
The patch isn't actually necessary but several things will not work if it is not present. The parser won't do compiled policy caching, the init scripts won't work, and aa-status and a few other commands won't work either.
Basically anything that requires introspection of the load policy or supported kernel features doesn't work correctly. Every thing else should.
If you are building 2.5.1 on a buildd with a kernel that doesn't support the AppArmor 2.4 interface, then I suggest you disable the test in the Makefile with a small patch.
More information about the AppArmor
mailing list