Hello Paul-Andre, I don't see any /usr/sbin/apparmor_parser files in any of the binary packages that I've got very easy access to:
sarnold@wopr:/dev/shm/apparmor $ find . -name apparmor_parser -ls 331800394 1472 -rwxr-xr-x 1 sarnold sarnold 1506552 Feb 28 14:18 ./apparmor_3.0.8-1ubuntu2/sbin/apparmor_parser 331800180 1472 -rwxr-xr-x 1 sarnold sarnold 1506552 Sep 23 2022 ./apparmor_3.0.7-1ubuntu2/sbin/apparmor_parser 331799966 1472 -rwxr-xr-x 1 sarnold sarnold 1506552 Nov 23 09:55 ./apparmor_3.0.7-1ubuntu2.1/sbin/apparmor_parser 331799752 1500 -rwxr-xr-x 1 sarnold sarnold 1535648 Mar 9 2022 ./apparmor_3.0.4-2ubuntu2/sbin/apparmor_parser 331799540 1508 -rwxr-xr-x 1 sarnold sarnold 1543872 Oct 19 2022 ./apparmor_3.0.4-2ubuntu2.2/sbin/apparmor_parser 331799361 832 -rwxr-xr-x 1 sarnold sarnold 849048 Apr 3 2014 ./apparmor_2.8.95~2430-0ubuntu5/sbin/apparmor_parser 331799175 1468 -rwxr-xr-x 1 sarnold sarnold 1501568 Apr 12 2020 ./apparmor_2.13.3-7ubuntu5/sbin/apparmor_parser 331798981 1488 -rwxr-xr-x 1 sarnold sarnold 1522176 Oct 10 2022 ./apparmor_2.13.3-7ubuntu5.2/sbin/apparmor_parser 331798786 1440 -rwxr-xr-x 1 sarnold sarnold 1472232 Apr 17 2018 ./apparmor_2.12-4ubuntu5/sbin/apparmor_parser 331798611 1440 -rwxr-xr-x 1 sarnold sarnold 1472232 Sep 27 2018 ./apparmor_2.12-4ubuntu5.1/sbin/apparmor_parser 331798311 1256 -rwxr-xr-x 1 sarnold sarnold 1282984 Apr 12 2016 ./apparmor_2.10.95-0ubuntu2/sbin/apparmor_parser 331798305 888 -rwxr-xr-x 1 sarnold sarnold 909192 Sep 27 2018 ./apparmor_2.10.95-0ubuntu2.6~14.04.4/sbin/apparmor_parser 331797891 1260 -rwxr-xr-x 1 sarnold sarnold 1287064 May 28 2019 ./apparmor_2.10.95-0ubuntu2.11/sbin/apparmor_parser sarnold@wopr:/dev/shm/apparmor $ find . -name apparmor_parser -ls | grep usr sarnold@wopr:/dev/shm/apparmor 1 $ On my focal and newer systems, /sbin is a symlink to /usr/sbin: $ ls -ld /sbin /usr/sbin lrwxrwxrwx 1 root root 8 Apr 10 2019 /sbin -> usr/sbin drwxr-xr-x 2 root root 605 Apr 21 06:44 /usr/sbin This is part of the usrmerge process: https://www.freedesktop.org/wiki/Software/systemd/TheCaseForTheUsrMerge/ I'm curious how you've got a focal system where this isn't the case. How did this machine come to be? What's the broad outlines of its life history? Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/2017594 Title: package leaves non-updated copy of /usr/sbin/apparmor_parser after update to apparmor-2.13.3-7ubuntu5.2. Orphaned older executable breaks docker Status in apparmor package in Ubuntu: Confirmed Bug description: There appears to be two copies of apparmor_parser installed by previous versions of the apparmor package, in /sbin and /usr/sbin. When updating the apparmor package to apparmor-2.13.3-7ubuntu5.2, only the /sbin/apparmor_parser executable is updated and the /usr/sbin copy is left unchanged. Being earlier the path, /usr/sbin/apparmor_parser is used by Docker when trying to register the docker-default apparmor profile for containers. The orphaned older executable reports a warning about a new parameter in the parser configuration file in the same package, and that warning breaks the version check that docker runs against that executable on the first line of output. trying to parse the warning while looking for the version number results in the error: docker: Error response from daemon: AppArmor enabled on system but the docker-default profile could not be loaded: strconv.Atoi: parsing "file": invalid syntax. As a workaround, we've been replacing the old version in /usr/sbin with a symlink to the file in /sbin, but the package should be corrected to do appropriate behaviour (either delete the unnecessary(?) copy in /usr/sbin or replace it with a symlink) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2017594/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : [email protected] Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
