From c9b4423e45387012d2ceaa606b44ff4f5b3d7ea3 Mon Sep 17 00:00:00 2001
From: Jeroen Rijken <jeroen.rijken@xs4all.nl>
Date: Sat, 9 Jul 2022 15:24:10 +0200
Subject: [PATCH] Allow mount-zfs access to pts

---
 apparmor.d/profiles-m-r/mount-zfs | 2 ++
 apparmor.d/profiles-s-z/zpool     | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/apparmor.d/profiles-m-r/mount-zfs b/apparmor.d/profiles-m-r/mount-zfs
index 07490bb5..cfd13ccf 100644
--- a/apparmor.d/profiles-m-r/mount-zfs
+++ b/apparmor.d/profiles-m-r/mount-zfs
@@ -15,6 +15,8 @@ profile mount-zfs @{exec_path} flags=(complain) {
 
   @{exec_path} mr,
 
+  /dev/pts/[0-9]* rw,
+
   @{MOUNTDIRS}/ r,
   @{MOUNTS}/ r,
   @{MOUNTS}/*/ r,
diff --git a/apparmor.d/profiles-s-z/zpool b/apparmor.d/profiles-s-z/zpool
index 5b0efb02..bbd73e3d 100644
--- a/apparmor.d/profiles-s-z/zpool
+++ b/apparmor.d/profiles-s-z/zpool
@@ -9,7 +9,7 @@ profile zpool @{exec_path} flags=(complain) {
 
   capability sys_admin,
 
-  @{exec_path} r,
+  @{exec_path} rm,
   /{usr/,}{local/,}lib/zfs-linux/zpool.d/* rix,
   /{usr/,}{local/,}bin/{ba,da,k,z,}sh rix,