AppArmor monitor subprocesses/threads
Hello,
I have a question to AppArmor and don't know where I should put it, maybe someone of you can help me.
I create different threads (prctl
) inside my program. Furthermore, I created a simple AppArmor profile with aa-autodep
and set it to complain mode.
When I call aa-status
the following is shown:
/opt/../bin/my-program//null-b0
/opt/../bin/my-program//null-bb//null-b1
/opt/../bin/my-program//null-bb//null-b2
/opt/../bin/my-program//null-bb//null-b3
/opt/../bin/my-program//null-b4
/opt/../bin/my-program//null-bb//null-b5
/opt/../bin/my-program//null-bb//null-b6
/opt/../bin/my-program//null-bb//null-b7
...
How can I create an AppArmor rule or subprofile for subprocesses which do not have their own file and inherit the origin rules? Furthermore, the separate threads should not be shown in the aa-status
, because they are spamming the logs - same as if an sshd profile will be used, there are also no thread entries.
Edited by Kevin Wallis