KubeArmor: Network policies fails to apply (Apparmor)

Bug Report

General Information

  • lsm: AppArmor

To Reproduce

  1. Apply this policy
apiVersion: security.kubearmor.com/v1
kind: KubeArmorPolicy
metadata:
  name: pol02
spec:
  action: Block
  network:
    matchProtocols:
    - protocol: TCP
  selector:
    matchLabels:
      app: dvwa-web
  severity: 1

Expected behavior

A block network policy should be applied

** Actual behavior**

The policy cannot be applied

image

Proposed fix

In apparmor profile generation, force the protocol to lower case.

About this issue

  • Original URL
  • State: closed
  • Created 2 years ago
  • Comments: 21 (21 by maintainers)

Most upvoted comments

Ok, I will try to setup using Vagrant now.

+1
kanhaiya04 on Jan 30, 2023
Read more comments on GitHub
← KubeArmor: Minikube Start is failing with latest version of minikube (1.26) and k8s(1.24)
KubeArmor: Permission denied when KubeArmor attaches kprobes →