Permission issues running tkey-ssh-agent with systemd on Ubuntu 24.04

tillitis / tkey-ssh-agent

SSH Agent for TKey, the flexible open hardware/software USB security key 🔑

https://www.tillitis.se

BSD 2-Clause "Simplified" License

131 stars 15 forks source link

Open dehanj opened 3 months ago

dehanj commented 3 months ago

Running the packaged tkey-ssh-agent with the systemd unit on Ubuntu 24.04 yields the error

Error while enumerating serial ports: lstat /dev/mqueue: permission denied.

This is most likely due to changes to what app armor allows, so an app_armor profile is needed.

A workaround with AppArmor enabled is setting kernel.apparmor_restrict_unprivileged_unconfined=0 and kernel.apparmor_restrict_unprivileged_userns=0. https://ubuntu.com/blog/ubuntu-23-10-restricted-unprivileged-user-namespaces

durehed commented 2 months ago

I had this exact issue and the work around works well.