webapp-container apps or even straight WebView apps in QML all want to read /proc/$pid/mounts and /dev/disk/by-label/ on startup
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| | Oxide |
Undecided
|
Unassigned | ||
| | oxide-qt (Ubuntu) |
Undecided
|
Unassigned | ||
Bug Description
opening a webapp-container app or any of my alternate webapp-container apps (which is just a WebView in some QML wrapping) produces the lines below for every app on startup.
May 26 17:48:08 ubuntu-phablet kernel: [17236.280884] type=1400 audit(143265528
May 26 17:48:08 ubuntu-phablet kernel: [17236.281059] type=1400 audit(143265528
| Jamie Strandboge (jdstrand) wrote : | #2 |
I'm not sure why oxide is trying to access /proc/*/mounts and /dev/disk/
| Jamie Strandboge (jdstrand) wrote : | #3 |
As it stands now, this is not a security issue because the security policy is blocking it, but it does create log entries that are confusing on each webapp launch.
| tags: | added: application-confinement |
| Jamie Strandboge (jdstrand) wrote : | #4 |
Also from IRC, this appears to be new in 'recent (vivid) images'
| summary: |
webapp-container apps or even straight WebView apps in QML all want to - read /proc/$pid/mounts on startup + read /proc/$pid/mounts and /dev/disk/by-label/ on startup |
From IRC:
10:54 < ogra_> i dont think its the webbrowser app since i see it in plain WebView as well