Bug#911900: AppArmor blocks XCompose, buddy icon
Package: pidgin Version: 2.13.0-2 Followup-For: Bug #911900 In addition, app icons: Oct 29 16:36:37 Zia kernel: [444528.926213] audit: type=1400 audit(1540845397.534:1567): apparmor="DENIED" operation="open" profile="/usr/bin/pidgin" name="/home/anthony/.icons/gnome/48x48/apps/" pid=12089 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 Oct 29 16:36:37 Zia kernel: [444528.928268] audit: type=1400 audit(1540845397.534:1568): apparmor="DENIED" operation="open" profile="/usr/bin/pidgin" name="/home/anthony/.icons/gnome/48x48/apps/" pid=12089 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 Oct 29 16:36:37 Zia kernel: [444528.942792] audit: type=1400 audit(1540845397.550:1569): apparmor="DENIED" operation="open" profile="/usr/bin/pidgin" name="/home/anthony/.icons/gnome/48x48/apps/" pid=12089 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 -- System Information: Debian Release: buster/sid APT prefers testing-debug APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 'unstable-debug'), (200, 'unstable'), (150, 'stable'), (100, 'experimental-debug'), (100, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.18.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en_GB (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages pidgin depends on: ii libatk1.0-0 2.30.0-1 ii libc6 2.27-6 ii libcairo2 1.16.0-1 ii libdbus-1-3 1.12.10-1 ii libdbus-glib-1-20.110-3 ii libfontconfig1 2.13.1-1 ii libfreetype62.8.1-2 ii libgadu31:1.12.2-3 ii libgdk-pixbuf2.0-0 2.38.0+dfsg-6 ii libglib2.0-02.58.1-2 ii libgstreamer1.0-0 1.14.4-1 ii libgtk2.0-0 2.24.32-3 ii libgtkspell02.0.16-1.2 ii libice6 2:1.0.9-2 ii libpango-1.0-0 1.42.4-3 ii libpangocairo-1.0-0 1.42.4-3 ii libpangoft2-1.0-0 1.42.4-3 ii libpurple0 2.13.0-2 ii libsm6 2:1.2.2-1+b3 ii libx11-62:1.6.7-1 ii libxss1 1:1.2.3-1 ii perl-base [perlapi-5.26.2] 5.26.2-7+b1 ii pidgin-data 2.13.0-2 Versions of packages pidgin recommends: ii gstreamer1.0-libav 1.15.0.1+git20180723+db823502-2 ii gstreamer1.0-plugins-base 1.14.4-1 ii gstreamer1.0-plugins-good 1.14.4-1 ii gstreamer1.0-pulseaudio1.14.4-1 Versions of packages pidgin suggests: ii libsqlite3-0 3.25.2-1 -- no debconf information
Bug#911900: AppArmor blocks XCompose, buddy icon
Package: pidgin Version: 2.13.0-2 Severity: normal AppArmor denials from Pidgin which probably shouldn't be denied. The odd path in the first one is because some of my dotfiles are stored in version control: anthony@Zia:~$ readlink -f .XCompose /home/anthony/src/svn.derobert.net_DotFiles/XCompose the .compose-cache is part of XCompose; see https://www.x.org/releases/X11R7.5/doc/man/man5/Compose.5.html and is the default path. Third one is where my buddy icon is stored. Oct 25 17:56:19 Zia kernel: [103720.936003] audit: type=1400 audit(1540504579.877:458): apparmor="DENIED" operation="open" profile="/usr/bin/pidgin" name="/home/anthony/src/svn.derobert.net_DotFiles/XCompose" pid=12089 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 Oct 25 17:56:19 Zia kernel: [103720.961707] audit: type=1400 audit(1540504579.905:459): apparmor="DENIED" operation="mknod" profile="/usr/bin/pidgin" name="/home/anthony/.compose-cache/l4_030_313cb605_00280cc0" pid=12089 comm="pidgin" requested_mask="c" denied_mask="c" fsuid=1000 ouid=1000 Oct 25 17:56:20 Zia kernel: [103721.117295] audit: type=1400 audit(1540504580.061:460): apparmor="DENIED" operation="open" profile="/usr/bin/pidgin" name="/home/anthony/buddyico/fract-done-try3-redo.gif" pid=12089 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 (last line repeats a bunch of times) -- System Information: Debian Release: buster/sid APT prefers testing-debug APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 'unstable-debug'), (200, 'unstable'), (150, 'stable'), (100, 'experimental-debug'), (100, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.18.0-2-amd64 (SMP w/8 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en_GB (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages pidgin depends on: ii libatk1.0-0 2.30.0-1 ii libc6 2.27-6 ii libcairo2 1.16.0-1 ii libdbus-1-3 1.12.10-1 ii libdbus-glib-1-20.110-3 ii libfontconfig1 2.13.1-1 ii libfreetype62.8.1-2 ii libgadu31:1.12.2-3 ii libgdk-pixbuf2.0-0 2.38.0+dfsg-6 ii libglib2.0-02.58.1-2 ii libgstreamer1.0-0 1.14.4-1 ii libgtk2.0-0 2.24.32-3 ii libgtkspell02.0.16-1.2 ii libice6 2:1.0.9-2 ii libpango-1.0-0 1.42.4-3 ii libpangocairo-1.0-0 1.42.4-3 ii libpangoft2-1.0-0 1.42.4-3 ii libpurple0 2.13.0-2 ii libsm6 2:1.2.2-1+b3 ii libx11-62:1.6.7-1 ii libxss1 1:1.2.3-1 ii perl-base [perlapi-5.26.2] 5.26.2-7+b1 ii pidgin-data 2.13.0-2 Versions of packages pidgin recommends: ii gstreamer1.0-libav 1.15.0.1+git20180723+db823502-2 ii gstreamer1.0-plugins-base 1.14.4-1 ii gstreamer1.0-plugins-good 1.14.4-1 ii gstreamer1.0-pulseaudio1.14.4-1 Versions of packages pidgin suggests: ii libsqlite3-0 3.25.2-1 -- no debconf information
