[apparmor] unexpected apparmor logs
apparmor at raf.org
apparmor at raf.org
Mon Mar 26 21:30:24 UTC 2018
Christian Boltz wrote:
> Hello,
>
> Am Montag, 26. März 2018, 14:56:23 CEST schrieb apparmor at raf.org:
> > actually, apparmor doesn't like the "[.-]" construct.
>
> What exactly do you mean with "doesn't like"? Does it break something?
> If so, some details and the exact error message would be helpful ;-)
>
> Regards,
> Christian Boltz
with:
/{var/,}run/lock/apache2/mpm-accept[.-][0-9]* wk,
aa-complain usr.sbin.apache2 says:
Setting /etc/apparmor.d/usr.sbin.apache2 to complain mode.
ERROR: ERROR processing regexs for profile /usr/sbin/apache2, failed to load
i think it's expecting something after the first "-" to complete
a range of characters to match. i notice that it mentions
"regexs" rather than globbing but either way, having a "-" at
the start or end of a character class "[...]" is not supposed to
be interpreted as forming a range of characters. it's supposed
to just represent the "-" character itself. i think that's true
in both globbing and regular expressions (at least in bash and
perl).
anyway, i've settled on using this:
/{var/,}run/lock/apache2/mpm-accept{-[0-9],}.[0-9]* wk,
cheers,
raf
More information about the AppArmor
mailing list