Re: [agl-dev-community] disable Homescreen on icefish9.0.0 #help

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi !

Let's read the log:

(Apr 18 20:24:39 intel-corei7-64 audit[749]: AVC lsm=SMACK fn=smack_inode_permission action="" subject="User::App::sample_app" object="System" requested=r pid=749 comm="sample_app" name="toy_plane_liftoff.avi" dev="mmcblk2p2" ino=521464)

Your app is running under "User::App:sample_app"  while the file is labeled as "System". Thus you have no access.

Short solution:  chsmack -a "_" toy_plane_liftoff.avi

Long: if you need to access a file as (untrusted) app, the file needs to have the proper ACL / Smack label.
Anything you scp as root will have 'root/system' label and the app will not be able to read it.


Best regards,
Jan-Simon

------
Jan-Simon Möller
AGL Release Manager
The Linux Foundation

Visit us at:
www.automotivegradelinux.org
lists.automotivelinux.org
www.linuxfoundation.org


On Tue, Apr 21, 2020 at 12:07 PM Dejan Cotra via lists.automotivelinux.org <dejan.cotra=nttdata.ro@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Hi Vlad,

Thanks for answer. I appreciate it.

I have one more question if you maybe know it would be very helpful, when you mentioned SMACK.

So I copied some video files, some text files some rpms to my target by using scp some_file  root@192.168.0.11:/home/0
and I have constantly problems with SMACK (Apr 18 20:24:39 intel-corei7-64 audit[749]: AVC lsm=SMACK fn=smack_inode_permission action="" subject="User::App::sample_app" object="System" requested=r pid=749 comm="sample_app" name="toy_plane_liftoff.avi" dev="mmcblk2p2" ino=521464)

this happens when I try to access it from my application. This even happens when application try to load some *.so (which I installed from rpms).

Is there a way around this problem?

Br,
Dejan
 

_._,_._,_
Links:

You receive all messages sent to this group.

View/Reply Online (#8259) | Reply To Group | Reply To Sender | Mute This Topic | New Topic
Mute #help
Your Subscription | Contact Group Owner | Unsubscribe [list-automotive-discussions82@xxxxxxxxxxx]

_._,_._,_
[Index of Archives]     [LARTC]     [Bugtraq]     [Yosemite Forum]     [Photo]

  Powered by Linux