|
Bugzilla – Full Text Bug Listing |
| Summary: | apparmor initscript should try to mount /sys/kernel/security under systemd | ||
|---|---|---|---|
| Product: | [openSUSE] openSUSE 12.1 | Reporter: | Frederic Crozat <fcrozat> |
| Component: | AppArmor | Assignee: | Jeff Mahoney <jeffm> |
| Status: | RESOLVED FIXED | QA Contact: | E-mail List <qa-bugs> |
| Severity: | Normal | ||
| Priority: | P5 - None | ||
| Version: | Factory | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| Whiteboard: | |||
| Found By: | --- | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
| Bug Depends on: | |||
| Bug Blocks: | 696902 | ||
I don't have a system with systemd installed at the moment. Can you patch it and submit the change to the security:apparmor:factory apparmor package? filled as sr 77662 Accepted and pushed as SR 77678 to Factory. Closing as fixed. |
When booting under systemd, apparmor initscript should try to mount /sys/kernel/security, it is handled automatically by systemd. To fix that, in /lib/apparmor/rc.apparmor.functions, the following line should be changed in is_securityfs_mounted : grep -q securityfs / proc/filesystems && grep -q securityfs /proc/mounts to test -d %{SECURITYFS} -a -d /sys/fs/cgroup/systemd || grep -q securityfs / proc/filesystems && grep -q securityfs /proc/mounts this will trigger automounting of /sys/kernel/security by systemd.