mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-12-26 15:06:45 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: apparmor parser inside snap.

Browse source
This commit is contained in:
Alexandre Pujol 2024-12-11 22:54:28 +01:00
parent 969e2dbbec
commit 3a407cb345
Failed to generate hash of commit
2 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/profiles-a-f/apparmor_parser
View file

@ -17,6 +17,7 @@ profile apparmor_parser @{exec_path} flags=(attach_disconnected) {
@{exec_path} mr, @{exec_path} mr,
@{lib_dirs}/@{multiarch}/** mr,
@{lib_dirs}/snapd/apparmor.d/{,**} r, @{lib_dirs}/snapd/apparmor.d/{,**} r,
@{lib_dirs}/snapd/apparmor/{,**} r, @{lib_dirs}/snapd/apparmor/{,**} r,

2
apparmor.d/profiles-s-z/snap-seccomp
View file

@ -14,6 +14,8 @@ profile snap-seccomp @{exec_path} {
include <abstractions/consoles> include <abstractions/consoles>
include <abstractions/nameservice-strict> include <abstractions/nameservice-strict>
capability dac_read_search,
network netlink raw, network netlink raw,
@{exec_path} mr, @{exec_path} mr,