[apparmor] AppArmor continuing to confine process after calling rcapparmor stop
Seth Arnold
seth.arnold at canonical.com
Fri Jul 11 22:16:48 UTC 2014
On Fri, Jul 11, 2014 at 04:36:03PM +0200, Miklos Szeredi wrote:
> I've a bug report saying that a process continues to be confined after
> the profile has been removed.
>
> As far as my reading of the code goes, this is exactly what should
> happen, since common_perm() will call __aa_current_profile() which
> will use the obsolete profile. Is this intentional?
'rcapparmor stop' doesn't unload profiles; the 'teardown' option will
actually unload all the profiles.
Thanks
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20140711/094fdb96/attachment.pgp>
More information about the AppArmor
mailing list