From e7a152a26303d07aa533751bbad396be04545aed Mon Sep 17 00:00:00 2001
From: Guido Günther <agx@sigxcpu.org>
Date: Tue, 7 Jun 2016 07:52:05 +0200
Subject: Add more apparmor knobs

---
 development/apparmor-debugging.mdwn | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/development/apparmor-debugging.mdwn b/development/apparmor-debugging.mdwn
index 8a0244f..8cf1a50 100644
--- a/development/apparmor-debugging.mdwn
+++ b/development/apparmor-debugging.mdwn
@@ -14,11 +14,27 @@ This does not track [denials][1]. So do a
 
 and check for denails, turn them into "audit deny" for debugging.
 
+## Check environment scrubbing
+
+    echo 1 > /sys/module/apparmor/parameters/debugging
+
+## Turn off deny audit quieting
+
+    echo -n noquiet >/sys/module/apparmor/parameters/audit
+
 ## Other things to watch out for
 
 * Process environments are usually cleared. So if a confined process spawns
   a subprocess that relies on environments vars this might trigger problems
 
+## Other knobs to try
+
+    echo 1 > /sys/module/apparmor/parameters/debug
+	echo -n noquiet >/sys/module/apparmor/parameters/audit
+
+See [826218][] for details.
 
 [1]: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=826218
 [2]: http://wiki.apparmor.net/index.php/QuickProfileLanguage
+
+[826218]: http://bugs.debian.org/826218
-- 
cgit v1.2.3