feat(profile): modernize some profiles.

2024-10-02 13:46:30 +01:00 · 2024-10-02 13:46:30 +01:00 · 239ae17119
commit 239ae17119
parent 28a2892be0
15 changed files with 28 additions and 58 deletions
--- a/apparmor.d/groups/virt/dockerd
+++ b/apparmor.d/groups/virt/dockerd
@ -60,6 +60,7 @@ profile dockerd @{exec_path} flags=(attach_disconnected) {
  pivot_root oldroot=/var/lib/docker/tmp/**/.pivot_root@{int}/                    /var/lib/docker/tmp/**/,

  ptrace read peer=docker-*,
+  ptrace read peer=runc,
  ptrace read peer=unconfined,

  signal send set=int  peer=docker-proxy,