hey, On 1/28/20 9:26 PM, Carsten Schoenert wrote: > feel free to increase the severity to important. I disagree with grave > or serious as the profile is disabled by default. > Normally we handle AA issues as wishlist. >
you're right, enabled the profile myself at some point (=removed
disable symlink ...), so please nevermind the severity thing.
> Logs are always fine and helpful. Also diffs from te modified
> configuration files. And they are needed to fix the problems. I added
> the Apparmor people into the loop, they know better what they maybe need
> more than the usual log from dmesg.
>
> @Intri and Vincas
> Coukd have a look at this issue here. Dimitry added some logging
> information within his first email. Thanks!
>
just reinstalled thunderbird, and enabled apparmor profile.
strangely, enigmail works now and tb is behaving normally.. (diff from
previous active profile doesn't show anything ?!).
( sorry for the fuzz :( )
anyway, apart from the last message (original bug report) that indeed
spams dmesg/logs, there are 3 more DENIED msgs at tb start :
[Thu Jan 30 2020] audit: type=1400 audit(1580374356.699:35):
apparmor="DENIED" operation="capable" profile="thunderbird" pid=23563
comm="thunderbird" capability=21 capname="sys_admin"
[Thu Jan 30 2020] audit: type=1400 audit(1580374356.923:36):
apparmor="DENIED" operation="open"
profile="thunderbird//sanitized_helper"
name="/tmp/clearsigned.message.pycT1r" pid=23600 comm="apt-cache"
requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000
[Thu Jan 30 2020] audit: type=1400 audit(1580374357.943:37):
apparmor="DENIED" operation="open" profile="thunderbird"
name="/etc/mate/defaults.list" pid=23563 comm="thunderbird"
requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
concerning original report msg, added this to profile :
owner /dev/shm/org.chromium.* r,
and it goes away, but then new msgs pop :
audit: type=1400 audit(1580377190.735:2835): apparmor="DENIED"
operation="file_inherit" profile="thunderbird//gpg"
name="/home/user/.icedove/profile.default/Mail/Feeds/filterlog.html"
pid=13850 comm="gpg" requested_mask="a" denied_mask="a" fsuid=1000 ouid=1000
&
audit: type=1400 audit(1580379917.195:2937): apparmor="DENIED"
operation="file_perm" profile="thunderbird//gpg"
name="/home/user/.icedove/profile.default/ImapMail/account1/filterlog.html"
pid=32149 comm="thunderbird" requested_mask="w" denied_mask="w"
fsuid=1000 ouid=1000
one for every filterlog.html in all accounts.. used this in profile to
go away:
owner /home/*/{.icedove,.thunderbird}/*/*/*/filterlog.html w,
but maybe there's a better way.
also this msg :
audit: type=1400 audit(1580377190.735:2836): apparmor="DENIED"
operation="file_inherit" profile="thunderbird//gpg"
name=2F6XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXD6C
pid=13850 comm="gpg" requested_mask="a" denied_mask="a" fsuid=1000 ouid=1000
(replaced chars in between with Xs, since i don't know what this could
be..?)
thanks,
d.
signature.asc
Description: OpenPGP digital signature
