Consider allowing access to @{PROC}/@{pid}/limits
Bug #1613686 reported by
Jacek Nykis
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Snappy |
Fix Released
|
Medium
|
Jamie Strandboge |
Bug Description
I created snap for a monitoring system (prometheus) and it periodically wants to read /proc/<pid>/limits.
It would be good to allow read access to this file. I think it may be common for server software to try that access.
This line should do it:
@{PROC}
$ snap --version
snap 2.11+0.16.04
snapd 2.11+0.16.04
series 16
ubuntu 16.04
Changed in snappy: | |
status: | New → Triaged |
Changed in snappy: | |
assignee: | nobody → Jamie Strandboge (jdstrand) |
status: | Triaged → In Progress |
Changed in snappy: | |
importance: | Undecided → Medium |
milestone: | none → 2.15 |
status: | In Progress → Fix Committed |
To post a comment you must log in.
This is fine to add to the default apparmor template.