snapd

[adb-support] apparmor profile does not grant read access for the file containing the serial number

Bug #1821469 reported by Ferenc Czumbil
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
snapd
Fix Released
Medium
Zygmunt Krynicki
snapd 2.39

Bug Description

The serial file is one level deeper in the directory structure on my system.

# Allow reading the serial number of all the USB devices.
/sys/devices/**/usb*/*/serial r,

Should be

# Allow reading the serial number of all the USB devices.
/sys/devices/**/usb*/**/serial r,

Apparmor audit log:
Mar 24 19:00:26 acme kernel: audit: type=1400 audit(1553454026.960:14575): apparmor="DENIED" operation="open" profile="snap.scrcpy.adb" name="/sys/devices/pci0000:00/0000:00:14.0/usb1/1-2/1-2.3/serial" pid=5057 comm=64657669636520706F6C6C requested_mask="r" denied_mask="r" fsuid=1000 ouid=0

See original description
Ferenc Czumbil (sisco311)
description: updated
Revision history for this message
Zygmunt Krynicki (zyga) wrote :

The interface does intend to allow that but I see how the path encores more devices your system. It will likely contain a hub that was not present while we were developing the interface. I will address this shortly.

Changed in snapd:
milestone: none → 2.39
assignee: nobody → Zygmunt Krynicki (zyga)
status: New → In Progress
importance: Undecided → Medium
Revision history for this message
Zygmunt Krynicki (zyga) wrote :

This is now addressed in https://github.com/snapcore/snapd/pull/6646

Revision history for this message
Zygmunt Krynicki (zyga) wrote :

This has been merged in master. The next edge build of core should have this fix available for testing.

Changed in snapd:
status: In Progress → Fix Committed
Zygmunt Krynicki (zyga)
Changed in snapd:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.