From c1d8958aedcaf1b662e9e6d6c32ac042b6e65753 Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Sat, 21 Sep 2024 16:07:55 +0100
Subject: [PATCH] fix(profile): missing rule in resolvconf.

fix #502
---
 apparmor.d/profiles-m-r/resolvconf | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/apparmor.d/profiles-m-r/resolvconf b/apparmor.d/profiles-m-r/resolvconf
index 981af134..caa13b97 100644
--- a/apparmor.d/profiles-m-r/resolvconf
+++ b/apparmor.d/profiles-m-r/resolvconf
@@ -15,6 +15,7 @@ profile resolvconf @{exec_path} {
 
   @{sh_path}         rix,
   @{bin}/cat         rix,
+  @{bin}/cp          rix,
   @{bin}/flock       rix,
   @{bin}/mkdir       rix,
   @{bin}/mv          rix,
@@ -27,10 +28,14 @@ profile resolvconf @{exec_path} {
 
   /usr/lib/resolvconf/{,**} r,
 
+  @{etc_rw}/resolv.conf.bak rw,
   @{etc_rw}/resolv.conf rw,
+  /etc/resolvconf.conf r,
   /etc/resolvconf/{,**} r,
   /etc/resolvconf/update.d/libc rix,
 
+  / r,
+
   owner @{run}/resolvconf/{,**} rw,
   owner @{run}/resolvconf/run-lock wk,