mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-18 08:58:15 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

build: update full system policy setup.

Browse source
This commit is contained in:
Alexandre Pujol 2023-11-11 20:25:27 +00:00
parent 5760c0129c
commit 3b42cc0ca7
Failed to generate hash of commit
1 changed files with 3 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
pkg/prebuild/prepare.go
View file

@ -173,11 +173,10 @@ func SetFlags() error {
return nil return nil
} }
// Set AppArmor for full system policy // Set AppArmor for (experimental) full system policy.
// See https://gitlab.com/apparmor/apparmor/-/wikis/FullSystemPolicy // See https://apparmor.pujol.io/development/structure/#full-system-policy
// https://gitlab.com/apparmor/apparmor/-/wikis/AppArmorInSystemd#early-policy-loads
func SetFullSystemPolicy() error { func SetFullSystemPolicy() error {
for _, name := range []string{"init", "systemd"} { for _, name := range []string{"systemd", "systemd-user"} {
err := paths.New("apparmor.d/groups/_full/" + name).CopyTo(RootApparmord.Join(name)) err := paths.New("apparmor.d/groups/_full/" + name).CopyTo(RootApparmord.Join(name))
if err != nil { if err != nil {
return err return err