From b6b510aa36323bbc6f1d042af70e2c922a9658a7 Mon Sep 17 00:00:00 2001 From: Jeroen Rijken Date: Sat, 30 Jul 2022 18:46:24 +0200 Subject: [PATCH] Remove entries duplicate with base abstractions. --- apparmor.d/groups/ubuntu/release-upgrade-motd | 4 +--- apparmor.d/profiles-s-z/zsys-system-autosnapshot | 4 ---- apparmor.d/profiles-s-z/zsysd | 1 - 3 files changed, 1 insertion(+), 8 deletions(-) diff --git a/apparmor.d/groups/ubuntu/release-upgrade-motd b/apparmor.d/groups/ubuntu/release-upgrade-motd index 0c99c37d..ef5eb9bc 100644 --- a/apparmor.d/groups/ubuntu/release-upgrade-motd +++ b/apparmor.d/groups/ubuntu/release-upgrade-motd @@ -21,7 +21,5 @@ profile release-upgrade-motd @{exec_path} { /var/lib/ubuntu-release-upgrader/release-upgrade-available rw, - @{PROC}/filesystems r, - include if exists -} \ No newline at end of file +} diff --git a/apparmor.d/profiles-s-z/zsys-system-autosnapshot b/apparmor.d/profiles-s-z/zsys-system-autosnapshot index 676c168c..fd93c686 100644 --- a/apparmor.d/profiles-s-z/zsys-system-autosnapshot +++ b/apparmor.d/profiles-s-z/zsys-system-autosnapshot @@ -17,8 +17,6 @@ profile zsys-system-autosnapshot @{exec_path} flags=(complain) { /{usr/,}bin/rm rix, /{usr/,}bin/zsysctl rix, /{usr/,}bin/zsysd rix, - - /{usr/,}lib/locale/locale-archive r, /var/log/unattended-upgrades/unattended-upgrades-dpkg.log rw, @@ -26,8 +24,6 @@ profile zsys-system-autosnapshot @{exec_path} flags=(complain) { @{run}/zsys-snapshot.unattended-upgrades rw, @{run}/unattended-upgrades.pid r, - @{PROC}/filesystems r, - /dev/pts/[0-9]* rw, include if exists diff --git a/apparmor.d/profiles-s-z/zsysd b/apparmor.d/profiles-s-z/zsysd index 68b75348..41274449 100644 --- a/apparmor.d/profiles-s-z/zsysd +++ b/apparmor.d/profiles-s-z/zsysd @@ -34,7 +34,6 @@ profile zsysctl @{exec_path} flags=(complain) { owner @{PROC}/@{pids}/stat r, @{PROC}/@{pids}/mounts r, @{PROC}/cmdline r, - @{PROC}/filesystems r, @{PROC}/sys/kernel/spl/hostid r, @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,