From 6e1e7dc32bd5226de54811fc72064efccf846992 Mon Sep 17 00:00:00 2001
From: Alex <roddhjav@users.noreply.github.com>
Date: Sun, 10 Jul 2022 12:38:11 +0000
Subject: [PATCH] Apply suggestions from code review

---
 apparmor.d/groups/virt/containerd | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apparmor.d/groups/virt/containerd b/apparmor.d/groups/virt/containerd
index 212846e7..0a7c31ea 100644
--- a/apparmor.d/groups/virt/containerd
+++ b/apparmor.d/groups/virt/containerd
@@ -43,7 +43,7 @@ profile containerd @{exec_path} flags=(attach_disconnected) {
   @{run}/netns/ w,
   @{run}/netns/cni-@{uuid} rw,
   /var/lib/cni/results/cni-loopback-@{uuid}-lo l,
-  @{PROC}/@{pid}/task/[0-9]*/ns/net rw,
+  @{PROC}/@{pid}/task/@{tid}/ns/net rw,
 
   /var/lib/containerd/{,**} rwk,
   /var/lib/docker/containerd/{,**} rwk,
@@ -63,7 +63,7 @@ profile containerd @{exec_path} flags=(attach_disconnected) {
   @{sys}/kernel/security/apparmor/profiles r,
   @{sys}/module/apparmor/parameters/enabled r,
   /tmp/cri-containerd.apparmor.d[0-9]* rwl,
-  /usr/sbin/apparmor_parser Px,
+  /{usr/,}{s,}bin/apparmor_parser  rPx,
 
   include if exists <local/containerd>
 }