Ok, I'm dealing with the same thing, Ubuntu 24.04, transmission-daemon. I'm watching my logs (dmesg -w), and I'm getting endless "ALLOWED" messages. I mean, it's just a stream, looking like the following and all seeming to say "operation=file_perm". Only very occasionally is there a "name=" some recognizable filename.
audit: type=1400 audit(1758160530.477:124160): apparmor="ALLOWED" operation="file_perm" class="file" profile="transmission-daemon" name=2F686F6D652F6465762F446174612F546F7272656E74732F436F6C6F6E69616C69736D2F53696E73206F6620436F6C6F6E69616C69736D202D20436F6C6C656374696F6E20343020282E2E20696E204166726963612039292F4164616D73202D205468652043616C6C206F6620436F6E736369656E63653B204672656E63682050726F74657374616E7420526573706F6E73657320746F2074686520416C67657269616E205761722C20313935342D31393632202831393938292E706466 pid=2885 comm="transmission-da" requested_mask="r" denied_mask="r" fsuid=1000 ouid=1000 I don't know if this is relevant, but I run transmission-daemon under my own user, and all shared files are owned by me. I'll read that first post again closely to try to figure out what to do, but this definitely has to stop. It seems to me that as with Android, there should be some way to say, give X app full access to Y directory. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2117338 Title: Tremendous amount of apparmor audit spam in the kernel log To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2117338/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
