Re: [PATCH V2 4/4] Apparmor: Allow reading /etc/ssl/openssl.cnf

On Wed, Jun 23, 2021 at 1:28 AM Jim Fehlig wrote: > > I noticed the following denial when running confined VMs with the QEMU > driver > > type=AVC msg=audit(1623865089.263:865): apparmor="DENIED" operation="open" \ > profile="virt-aa-helper" name="/etc/ssl/openssl.cnf" pid=12503 \ >

[PATCH V2 4/4] Apparmor: Allow reading /etc/ssl/openssl.cnf

I noticed the following denial when running confined VMs with the QEMU driver type=AVC msg=audit(1623865089.263:865): apparmor="DENIED" operation="open" \ profile="virt-aa-helper" name="/etc/ssl/openssl.cnf" pid=12503 \ comm="virt-aa-helper" requested_mask="r" denied_mask="r" fsuid=0 ouid=0