Verification passed for mantic-linux-laptop. I ran the AppArmor QA Regression Tests [1] checked file permissions for /proc/sys/kernel/*unprivileged*. The QA Regression Tests that failed were due to a timeout because I'm emulating in my machine, but they pass when the timeout is increased.
georgia@sec-mantic-arm64:~$ uname -a
Linux sec-mantic-arm64 6.5.0-1007-laptop #10-Ubuntu SMP PREEMPT_DYNAMIC Wed Nov
22 20:27:28 UTC 2023 aarch64 aarch64 aarch64 GNU/Linux
georgia@sec-mantic-arm64:~$ ll /proc/sys/kernel/*unprivileged*
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/apparmor_restrict_unprivileged_io_uring
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/apparmor_restrict_unprivileged_unconfined
-rw-r--r-- 1 root root 0 Jan 12 18:36 /proc/sys/kernel/apparmor_restrict_unprivileged_userns
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/apparmor_restrict_unprivileged_userns_complain
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/apparmor_restrict_unprivileged_userns_force
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/unprivileged_bpf_disabled
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/unprivileged_userns_apparmor_policy
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/kernel/unprivileged_userns_clone
georgia@sec-mantic-arm64:~/qrt-test-apparmor$ sudo ./test-apparmor.py
ERROR: test_dbus (__main__.ApparmorTest.test_dbus)
Test dbus apparmor activation from dbus-tests
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/georgia/qrt-test-apparmor/./test-apparmor.py", line 719, in test_dbus
rc, report = testlib.cmd(['/usr/lib/dbus-1.0/installed-tests/dbus/test-apparmor-activation.sh'], ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/home/georgia/qrt-test-apparmor/testlib.py", line 471, in cmd
out, outerr = sp.communicate(input, timeout=timeout) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/subprocess.py", line 1209, in communicate
stdout, stderr = self._communicate(input, endtime, timeout) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/subprocess.py", line 2109, in _communicate
self._check_timeout(endtime, orig_timeout, stdout, stderr)
File "/usr/lib/python3.11/subprocess.py", line 1253, in _check_timeout
raise TimeoutExpired(
subprocess.TimeoutExpired: Command '['/usr/lib/dbus-1.0/installed-tests/dbus/test-apparmor-activation.sh']' timed out after 5 seconds
ERROR: test_0 (__main__.TestLogprof.test_0)
test 'ping'
----------------------------------------------------------------------
Traceback (most recent call last):
File "/tmp/testlib2jc8hiih/source/mantic/apparmor-4.0.0~alpha2/utils/test/common_test.py", line 90, in stub_test
self._run_test(test_data, expected)
File "/tmp/testlib2jc8hiih/source/mantic/apparmor-4.0.0~alpha2/utils/test/test-logprof.py", line 99, in _run_test
self.process.wait(timeout=0.2)
File "/usr/lib/python3.11/subprocess.py", line 1264, in wait
return self._wait(timeout=timeout) ^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/usr/lib/python3.11/subprocess.py", line 2038, in _wait
raise TimeoutExpired(self.args, timeout)
subprocess.TimeoutExpired: Command '['/usr/bin/python3', '../aa-logprof', '--json', '--configdir', './', '-f', './logprof/ping.auditlog', '-d', '/tmp/aa-test-tkkg1ex3/profiles', '--no-check-mountpoint']' timed out after 0.2 seconds
----------------------------------------------------------------------
Ran 62 tests in 43542.817s
FAILED (failures=3, errors=1, skipped=3)
Rerunning failing tests increasing the timeout
georgia@sec-mantic-arm64:~/qrt-test-apparmor$ sudo ./test-apparmor.py ApparmorTest.test_dbus
Skipping private tests
.
----------------------------------------------------------------------
Ran 1 test in 19.786s
georgia@sec-mantic-arm64:~/apparmor-4.0.0~alpha2/utils/test$ python3 test-logprof.py TestLogprof.test_0
.
----------------------------------------------------------------------
Ran 1 test in 12.463s
Verification passed for mantic- linux-laptop. I ran the AppArmor QA Regression Tests [1] checked file permissions for /proc/sys/ kernel/ *unprivileged* . The QA Regression Tests that failed were due to a timeout because I'm emulating in my machine, but they pass when the timeout is increased.
georgia@ sec-mantic- arm64:~ $ uname -a
Linux sec-mantic-arm64 6.5.0-1007-laptop #10-Ubuntu SMP PREEMPT_DYNAMIC Wed Nov
22 20:27:28 UTC 2023 aarch64 aarch64 aarch64 GNU/Linux
georgia@ sec-mantic- arm64:~ $ ll /proc/sys/ kernel/ *unprivileged* kernel/ apparmor_ restrict_ unprivileged_ io_uring kernel/ apparmor_ restrict_ unprivileged_ unconfined kernel/ apparmor_ restrict_ unprivileged_ userns kernel/ apparmor_ restrict_ unprivileged_ userns_ complain kernel/ apparmor_ restrict_ unprivileged_ userns_ force kernel/ unprivileged_ bpf_disabled kernel/ unprivileged_ userns_ apparmor_ policy kernel/ unprivileged_ userns_ clone
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw-r--r-- 1 root root 0 Jan 12 18:36 /proc/sys/
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw------- 1 root root 0 Jan 12 18:38 /proc/sys/
-rw-r--r-- 1 root root 0 Jan 12 18:38 /proc/sys/
georgia@ sec-mantic- arm64:~ /qrt-test- apparmor$ sudo ./test-apparmor.py _.ApparmorTest. test_dbus) ------- ------- ------- ------- ------- ------- ------- ------- ------- georgia/ qrt-test- apparmor/ ./test- apparmor. py", line 719, in test_dbus cmd(['/ usr/lib/ dbus-1. 0/installed- tests/dbus/ test-apparmor- activation. sh'],
^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^ georgia/ qrt-test- apparmor/ testlib. py", line 471, in cmd input, timeout=timeout)
^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ python3. 11/subprocess. py", line 1209, in communicate te(input, endtime, timeout)
^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ python3. 11/subprocess. py", line 2109, in _communicate _check_ timeout( endtime, orig_timeout, stdout, stderr) python3. 11/subprocess. py", line 1253, in _check_timeout TimeoutExpired: Command '['/usr/ lib/dbus- 1.0/installed- tests/dbus/ test-apparmor- activation. sh']' timed out after 5 seconds
ERROR: test_dbus (__main_
Test dbus apparmor activation from dbus-tests
-------
Traceback (most recent call last):
File "/home/
rc, report = testlib.
File "/home/
out, outerr = sp.communicate(
File "/usr/lib/
stdout, stderr = self._communica
File "/usr/lib/
self.
File "/usr/lib/
raise TimeoutExpired(
subprocess.
------- ------- ------- ------- ------- ------- ------- ------- ------- ------
running attach_disconnected
Fatal Error (unix_fd_server): Unable to run test sub-executable
PASSED: aa_exec access at_secure introspect capabilities changeprofile onexec changehat changehat_fork changehat_misc chdir clone coredump deleted e2e environ exec exec_qual fchdir fd_inheritance fork i18n link link_subset mkdir mmap mount mult_mount named_pipe namespaces net_raw open openat pipe pivot_root posix_ipc ptrace pwrite query_label regex rename readdir rw socketpair swap sd_flags setattr symlink syscall sysv_ipc tcp unix_fd_server unix_socket_ pathname unix_socket_ abstract unix_socket_unnamed unix_socket_ autobind unlink userns xattrs xattrs_profile longpath nfs dbus_eavesdrop dbus_message dbus_service dbus_unrequeste d_reply io_uring aa_policy_cache exec_stack nnp stackonexec stackprofile
FAILED: attach_disconnected
make: *** [Makefile:402: alltests] Error 1
------- ------- ------- ------- ------- ------- ------- ------- ------- ------
ERROR: test_0 (__main_ _.TestLogprof. test_0) ------- ------- ------- ------- ------- ------- ------- ------- ------- c8hiih/ source/ mantic/ apparmor- 4.0.0~alpha2/ utils/test/ common_ test.py" , line 90, in stub_test _run_test( test_data, expected) c8hiih/ source/ mantic/ apparmor- 4.0.0~alpha2/ utils/test/ test-logprof. py", line 99, in _run_test process. wait(timeout= 0.2) python3. 11/subprocess. py", line 1264, in wait timeout= timeout)
^^^ ^^^^^^^ ^^^^^^^ ^^^^^^^ ^^^ python3. 11/subprocess. py", line 2038, in _wait self.args, timeout) TimeoutExpired: Command '['/usr/ bin/python3' , '../aa-logprof', '--json', '--configdir', './', '-f', './logprof/ ping.auditlog' , '-d', '/tmp/aa- test-tkkg1ex3/ profiles' , '--no-check- mountpoint' ]' timed out after 0.2 seconds
test 'ping'
-------
Traceback (most recent call last):
File "/tmp/testlib2j
self.
File "/tmp/testlib2j
self.
File "/usr/lib/
return self._wait(
File "/usr/lib/
raise TimeoutExpired(
subprocess.
------- ------- ------- ------- ------- ------- ------- ------- ------- -------
Ran 62 tests in 43542.817s
FAILED (failures=3, errors=1, skipped=3)
Rerunning failing tests increasing the timeout
georgia@ sec-mantic- arm64:~ /qrt-test- apparmor$ sudo ./test-apparmor.py ApparmorTest. test_dbus ------- ------- ------- ------- ------- ------- ------- ------- -------
Skipping private tests
.
-------
Ran 1 test in 19.786s
OK
georgia@ sec-mantic- arm64:~ /apparmor- 4.0.0~alpha2/ tests/regressio n/apparmor$ sudo bash ./attach_ disconnected. sh sec-mantic- arm64:~ /apparmor- 4.0.0~alpha2/ tests/regressio n/apparmor$ echo $?
georgia@
0
georgia@ sec-mantic- arm64:~ /apparmor- 4.0.0~alpha2/ utils/test$ python3 test-logprof.py TestLogprof.test_0 ------- ------- ------- ------- ------- ------- ------- ------- -------
.
-------
Ran 1 test in 12.463s
OK
[1] https:/ /launchpad. net/qa- regression- testing