Hello,
aa-logprof raises an exception if
- an include file contains a hat
- that file is included in a profile and
- aa-logprof hits an audit log entry for this profile
Reproducer:
python3 aa-logprof -f (echo 'Jun 19 11:50:36 piorun kernel: [4474496.458789]
audit: type=1400
Hello,
for some (not yet known) reason, we get file_perm events without
request_mask set, which causes an aa-logprof crash.
Reproducer log entry:
Jun 19 12:00:55 piorun kernel: [4475115.459952] audit: type=1400
audit(1434708055.676:19629): apparmor=ALLOWED operation=file_perm