Skip to content

Update AppArmor rules

Dylan Aïssi requested to merge wip/daissi/apparmor-linux-6.8.12 into apertis/v2025dev3

The apparmor-ofono test fails with following AppArmor messages:

# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.0/tty/ttyS0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.1/tty/ttyS1/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.1/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.2/tty/ttyS2/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.2/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.3/tty/ttyS3/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.3/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19339 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.0/tty/ttyS0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.1/tty/ttyS1/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.1/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.2/tty/ttyS2/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.2/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.3/tty/ttyS3/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/serial8250:0.3/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
# AVC apparmor="DENIED" operation="open" class="file" profile="/usr/sbin/ofonod" name="/sys/devices/platform/serial8250/serial8250:0/uevent" pid=19345 comm="ofonod" requested_mask="r" denied_mask="r" fsuid=0 ouid=0

Signed-off-by: Dylan Aïssi dylan.aissi@collabora.com

Edited by Dylan Aïssi

Merge request reports

Loading