Comment 4 for bug 581525

I'm pretty sure I triggered this bug today:

Jun 20 23:58:04 haig kernel: [18128.952910] type=1505 audit(1277103484.764:181): operation="profile_load" pid=19615 name="/home/sarnold/Local/io/build/_build/binaries/io"
Jun 20 23:59:06 haig kernel: [18190.703695] type=1505 audit(1277103546.554:182): operation="profile_load" pid=19630 name="/home/sarnold/Local/io/**"
Jun 20 23:59:12 haig kernel: [18196.757170] PGD 1002063 PUD 0
Jun 20 23:59:12 haig kernel: [18196.757176] CPU 1
Jun 20 23:59:12 haig kernel: [18196.757177] Modules linked in: usb_storage nls_cp437 cifs binfmt_misc ppdev lp parport kvm_intel kvm snd_hda_codec_atihdmi coretemp snd_hda_codec_realtek fbcon tileblit font bitblit softcursor snd_hda_intel it87 hwmon_vid i2c_i801 i2c_dev snd_seq_dummy snd_seq_oss vga16fb snd_seq_midi vgastate snd_rawmidi snd_hda_codec snd_seq_midi_event snd_seq snd_hwdep snd_pcm_oss snd_mixer_oss snd_pcm snd_seq_device snd_timer radeon ttm drm_kms_helper drm i2c_algo_bit snd soundcore snd_page_alloc serio_raw hid_apple usbhid hid ohci1394 ieee1394 pata_jmicron r8169 mii ahci
Jun 20 23:59:12 haig kernel: [18196.757203] Pid: 19634, comm: bash Not tainted 2.6.32-22-generic #36-Ubuntu EX58-UD5
Jun 20 23:59:12 haig kernel: [18196.757205] RIP: 0010:[<ffffffff8127dc59>] [<ffffffff8127dc59>] aa_dfa_match_len+0xd9/0xf0
Jun 20 23:59:12 haig kernel: [18196.757207] RSP: 0000:ffff8801551f3d20 EFLAGS: 00010202
Jun 20 23:59:12 haig kernel: [18196.757209] RAX: 0000000000006573 RBX: ffff8801491ba28c RCX: 0000000000006573
Jun 20 23:59:12 haig kernel: [18196.757210] RDX: ffff8801a66d61fe RSI: 000000004841b77f RDI: ffff8801a66d61fe
Jun 20 23:59:12 haig kernel: [18196.757212] RBP: ffff8801551f3d38 R08: 0000000000000000 R09: ffff88014fc2810c
Jun 20 23:59:12 haig kernel: [18196.757213] R10: ffff8801a6901f0c R11: ffff8801a66d61ff R12: ffff88014fc28a0c
Jun 20 23:59:12 haig kernel: [18196.757215] R13: ffff8801a66d61f2 R14: ffff8801a66d61f2 R15: 0000000000000000
Jun 20 23:59:12 haig kernel: [18196.757216] FS: 00007f4b43417700(0000) GS:ffff880028240000(0000) knlGS:0000000000000000
Jun 20 23:59:12 haig kernel: [18196.757218] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Jun 20 23:59:12 haig kernel: [18196.757220] CR2: ffff8801e045f00a CR3: 0000000155212000 CR4: 00000000000026e0
Jun 20 23:59:12 haig kernel: [18196.757221] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
Jun 20 23:59:12 haig kernel: [18196.757223] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Jun 20 23:59:12 haig kernel: [18196.757225] Process bash (pid: 19634, threadinfo ffff8801551f2000, task ffff8801a91b8000)
Jun 20 23:59:12 haig kernel: [18196.757227] ffff880165507660 0000000000000001 ffff8801a66d61f2 ffff8801551f3d68
Jun 20 23:59:12 haig kernel: [18196.757229] <0> ffffffff8127dcaa ffff8801551f3db8 ffff88014fdebc00 0000000000000000
Jun 20 23:59:12 haig kernel: [18196.757232] <0> ffff8801afc18228 ffff8801551f3db8 ffffffff8127e7e3 ffff8801551f3db8
Jun 20 23:59:12 haig kernel: [18196.757237] [<ffffffff8127dcaa>] aa_dfa_match+0x3a/0x50
Jun 20 23:59:12 haig kernel: [18196.757239] [<ffffffff8127e7e3>] aa_find_attach+0x93/0xf0
Jun 20 23:59:12 haig kernel: [18196.757241] [<ffffffff8127f81b>] apparmor_bprm_set_creds+0x36b/0x530
Jun 20 23:59:12 haig kernel: [18196.757245] [<ffffffff8108998e>] ? up_write+0xe/0x10
Jun 20 23:59:12 haig kernel: [18196.757248] [<ffffffff812507f3>] security_bprm_set_creds+0x13/0x20
Jun 20 23:59:12 haig kernel: [18196.757251] [<ffffffff81149431>] prepare_binprm+0xb1/0x110
Jun 20 23:59:12 haig kernel: [18196.757253] [<ffffffff8114a29c>] do_execve+0x1ac/0x300
Jun 20 23:59:12 haig kernel: [18196.757256] [<ffffffff812bbdea>] ? strncpy_from_user+0x4a/0x90
Jun 20 23:59:12 haig kernel: [18196.757259] [<ffffffff810115ba>] sys_execve+0x4a/0x80
Jun 20 23:59:12 haig kernel: [18196.757262] [<ffffffff8101360a>] stub_execve+0x6a/0xc0
Jun 20 23:59:12 haig kernel: [18196.757286] RSP <ffff8801551f3d20>
Jun 20 23:59:12 haig kernel: [18196.757288] ---[ end trace 14de455de885a441 ]---

I had immediately beforehand generated a profile for /home/sarnold/Local/io/build/_build/binaries/io using the aa-autodep program, which created and loaded the profile in complain mode.

I hand-edited the file to remove the flags=(complain), changed the attach path to /home/sarnold/Local/io/** slightly modified the rules, and ran apparmor_parser --replace <filename>.

I did not remove the more-specific profile first. I figured it would be harmless. :)

I don't think anything happened right away; but my next attempt to execute a command failed with that kernel log.

You get to voyeuristically watch me try to repair my system with the rest of the comm entries in my attached /var/log/messages. "shutdown -r now" failed me. Twice. I couldn't execute most programs I tried, but already running programs seemed to execute fine, and I had access to a surprising array of commands: init-spawned getty, bash, sudo, ls, echo, and cat all worked well enough for me to use /proc/sysrq-trigger to force a clean-ish reboot.

I am guessing that perhaps I was unable to page in new executables, but programs already paged in could work fine. Just a big guess, given that 'shutdown' didn't work but all the smaller utilities worked fine.

Thanks