else:
summary = {} # type: Dict[str, int]
for line in profiles.split('\n'):
- item, mode = line.split(' ')
- mode = mode.strip('()')
+ mode = line.rsplit(' ', 1)[-1]
+ assert mode[0] == '(' and mode[-1] == ')'
+ mode = mode[1:-1]
if mode in summary:
summary[mode] += 1
else:
'/usr/bin/man (enforce)',
'1password (unconfined)',
'Discord (unconfined)',
- # These examples with spaces in the name fail currently
- # 'MongoDB Compass (unconfined)',
- # 'profile name with spaces (enforce)',
+ 'MongoDB Compass (unconfined)',
+ 'profile name with spaces (enforce)',
]
cephadm_fs.create_file(
'/sys/kernel/security/apparmor/profiles',
assert ksec['type'] == 'AppArmor'
assert ksec['type'] == 'AppArmor'
assert ksec['complain'] == 0
- assert ksec['enforce'] == 0
- assert ksec['unconfined'] == 1
+ assert ksec['enforce'] == 1
+ assert ksec['unconfined'] == 2
projects / ceph-ci.git / commitdiff