Support unloading profiles in kill and prompt mode

... in aa-teardown (actually everything that uses rc.apparmor.functions) and aa-remove-unknown. Fixes: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2093797
2025-08-31 06:16:03 +00:00 · 2025-01-11 19:55:54 +01:00
parent b4cb33b488
commit 1c2d79de7f
2 changed files with 2 additions and 2 deletions
--- a/parser/rc.apparmor.functions
+++ b/parser/rc.apparmor.functions
@@ -253,7 +253,7 @@ remove_profiles() {
 	retval=0
 	# We filter child profiles as removing the parent will remove
 	# the children
-	sed -e "s/ (\(enforce\|complain\|unconfined\))$//" "$SFS_MOUNTPOINT/profiles" | \
+	sed -e "s/ (\(enforce\|complain\|prompt\|kill\|unconfined\))$//" "$SFS_MOUNTPOINT/profiles" | \
 	LC_COLLATE=C sort | grep -v // | {
 		while read -r profile ; do
 			printf "%s" "$profile" > "$SFS_MOUNTPOINT/.remove"