apparmor.d/docs/issues.md

---
title: Known issues
---

!!! info

    Known bugs are tracked on the meta issue **[#75](https://github.com/roddhjav/apparmor.d/issues/74)**.

## Complain mode

A profile in *complain* mode cannot break the program it confines. However, there are some **major exceptions**:

1. `deny` rules are enforced even in *complain* mode,
2. `attach_disconnected` (and `mediate_deleted`) will break the program if they are required and missing in the profile,
3. If AppArmor does not find the profile to transition `rPx`.

## Pacman "could not get current working directory"

```sh
$ sudo pacman -Syu
...
error: could not get current working directory
:: Processing package changes...
...
```

This is **a feature, not a bug!** It can safely be ignored. Pacman tries to get your current directory. You will only get this error when you run pacman in your home directory.

According to the Arch Linux guideline, on Arch Linux, packages cannot install files under `/home/`. Therefore, the [`pacman`][pacman] profile purposely does not allow access of your home directory.

This provides a basic protection against some packages (on the AUR) that may have rogue install script.

[pacman]: https://github.com/roddhjav/apparmor.d/blob/main/apparmor.d/groups/pacman/pacman
docs: initial documentation website. 2023-01-29 22:18:22 +01:00			`---`
			`title: Known issues`
			`---`

docs: update known issues. 2024-09-26 00:19:54 +02:00			`!!! info`
docs: add warning on known issue. 2023-04-16 22:35:15 +02:00
docs: update known issues. 2024-09-26 00:19:54 +02:00			`Known bugs are tracked on the meta issue [#75](https://github.com/roddhjav/apparmor.d/issues/74).`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
docs: update known issues. 2024-09-26 00:19:54 +02:00			`## Complain mode`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
docs: update known issues. 2024-09-26 00:19:54 +02:00			`A profile in complain mode cannot break the program it confines. However, there are some major exceptions:`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
docs: update known issues. 2024-09-26 00:19:54 +02:00			1. `deny` rules are enforced even in complain mode,
			2. `attach_disconnected` (and `mediate_deleted`) will break the program if they are required and missing in the profile,
			3. If AppArmor does not find the profile to transition `rPx`.

			`## Pacman "could not get current working directory"`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
			```sh
			`$ sudo pacman -Syu`
			`...`
			`error: could not get current working directory`
			`:: Processing package changes...`
			`...`
			```

doc: cosmetic. 2023-09-19 20:18:15 +02:00			`This is a feature, not a bug! It can safely be ignored. Pacman tries to get your current directory. You will only get this error when you run pacman in your home directory.`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
issues - Fix spelling mistakes of AppArmor and Arch Linux 2024-06-07 21:29:21 +02:00			According to the Arch Linux guideline, on Arch Linux, packages cannot install files under `/home/`. Therefore, the [`pacman`][pacman] profile purposely does not allow access of your home directory.
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
doc: cosmetic. 2023-09-19 20:18:15 +02:00			`This provides a basic protection against some packages (on the AUR) that may have rogue install script.`
docs: initial documentation website. 2023-01-29 22:18:22 +01:00
doc: minor update. 2023-02-11 20:00:14 +01:00			`[pacman]: https://github.com/roddhjav/apparmor.d/blob/main/apparmor.d/groups/pacman/pacman`