felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profiles): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2023-09-05 16:42:06 +01:00
parent 1fb5475ad1
commit 155ef6bef1
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
24 changed files with 83 additions and 43 deletions
Download patch file Download diff file Expand all files Collapse all files

7
apparmor.d/profiles-m-r/multipath
View file

@ -7,17 +7,20 @@ abi <abi/3.0>,
include <tunables/global>
@{exec_path} = @{bin}/multipath
profile multipath @{exec_path} {
profile multipath @{exec_path} flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/disks-write>
capability sys_admin,
capability sys_resource,
unix (send, receive, connect) type=stream peer=(addr="@/org/kernel/linux/storage/multipathd"),
@{exec_path} mr,
/etc/multipath.conf r,
/etc/multipath/bindings rwk,
/etc/multipath/ r,
/etc/multipath/* rwk,
/etc/systemd/system/ r,
@{run}/systemd/system/ r,

4
apparmor.d/profiles-m-r/multipathd
View file

@ -15,6 +15,7 @@ profile multipathd @{exec_path} {
capability net_admin,
capability sys_admin,
capability sys_nice,
capability sys_rawio,
capability sys_resource,
network netlink raw,
@ -24,7 +25,8 @@ profile multipathd @{exec_path} {
@{exec_path} mr,
/etc/multipath.conf r,
/etc/multipath/bindings rwk,
/etc/multipath/ r,
/etc/multipath/* rwk,
/etc/systemd/system/ r,
@{run}/multipathd.pid rwk,