mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-15 16:03:51 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Small fixes

Browse Source
This commit is contained in:
Jeroen Rijken 2022-07-17 14:22:13 +02:00 committed by Alex
parent 70aa5fdbb2
commit e9bcd3f820
2 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
apparmor.d/groups/virt/cni-calico
View File

@ -24,6 +24,7 @@ profile cni-calico @{exec_path} {
/var/log/calico/cni/ r, /var/log/calico/cni/ r,
/var/log/calico/cni/cni.log rw, /var/log/calico/cni/cni.log rw,
@{run}/calico/ rw,
@{run}/calico/ipam.lock rwk, @{run}/calico/ipam.lock rwk,
@{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r, @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

2
apparmor.d/groups/virt/containerd
View File

@ -98,5 +98,7 @@ profile containerd @{exec_path} flags=(attach_disconnected) {
/dev/snd/by-path/ r, /dev/snd/by-path/ r,
/dev/vfio/ r, /dev/vfio/ r,
deny / r,
include if exists <local/containerd> include if exists <local/containerd>
} }