roddhjav
commented
3 months ago Thanks, it should be fixed now.
Also, please follow the documentation to move to enforce mode, as it keeps in complain mode some profile (including flatpak-app).
Closed Stoppedpuma closed 3 months ago
roddhjav
commented
3 months ago Thanks, it should be fixed now.
Also, please follow the documentation to move to enforce mode, as it keeps in complain mode some profile (including flatpak-app).
Stoppedpuma
commented
3 months ago @roddhjav Unrelated to the original issue but is there a make flag or something to prevent updating from resetting to the default make mode (complain / enforce)? Having to re-enforce all the profiles I have enabled is a bit time consuming.
roddhjav
commented
3 months ago That is what I was referring in the documentation. Build with make enforce instead of make.
Stoppedpuma
commented
3 months ago I'm aware of that but I have additional profiles that aren't in enforcing from make enforce being enforced as well as some in complain mode from the enforcing flag as well. To rephrase what I meant, is there a way to have profile remain in their set enforced / complain modes after updates instead of just resetting them to defaults?
Denial log:
apparmor="DENIED" operation="open" class="file" profile="flatpak-app" name="/run/parent/app/.ref" pid=2266268 comm="bwrap" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0Opening steam with flatpak-app in enforcing mode results in this error, clicking "Ok" closes steam.