From 245db40b2d4ffdee792f9e1bc36ebfcf1d50687d Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Tue, 5 Sep 2023 23:32:11 +0100 Subject: [PATCH] fix(abs): update pci path for disk acess. --- apparmor.d/abstractions/disks-read | 11 ++++++----- apparmor.d/abstractions/disks-write | 11 ++++++----- 2 files changed, 12 insertions(+), 10 deletions(-) diff --git a/apparmor.d/abstractions/disks-read b/apparmor.d/abstractions/disks-read index 484de9b44..cbeec5d0b 100644 --- a/apparmor.d/abstractions/disks-read +++ b/apparmor.d/abstractions/disks-read @@ -14,11 +14,12 @@ # Regular disk/partition devices /dev/{s,v}d[a-z]* rk, /dev/{s,v}d[a-z]*@{int} rk, - @{sys}/devices/pci[0-9]*/**/block/{s,v}d[a-z]/ r, - @{sys}/devices/pci[0-9]*/**/block/{s,v}d[a-z]/** r, - @{sys}/devices/@{pci}{,/**}/ata@{int}/** r, - @{sys}/devices/@{pci}{,/**}/usb@{int}/** r, - @{sys}/devices/@{pci}{,/**}/virtio@{int}/** r, + @{sys}/devices/@{pci}/ata@{int}/** r, + @{sys}/devices/@{pci}/block/{s,v}d[a-z]/ r, + @{sys}/devices/@{pci}/block/{s,v}d[a-z]/** r, + @{sys}/devices/@{pci}/host@{int}/** r, + @{sys}/devices/@{pci}/usb@{int}/** r, + @{sys}/devices/@{pci}/virtio@{int}/** r, # SSD Nvme devices /dev/nvme[0-9]* rk, diff --git a/apparmor.d/abstractions/disks-write b/apparmor.d/abstractions/disks-write index 58c322569..f66485e83 100644 --- a/apparmor.d/abstractions/disks-write +++ b/apparmor.d/abstractions/disks-write @@ -14,11 +14,12 @@ # Regular disk/partition devices /dev/{s,v}d[a-z]* rwk, /dev/{s,v}d[a-z]*@{int} rwk, - @{sys}/devices/@{pci}{,/**}/block/{s,v}d[a-z]/ r, - @{sys}/devices/@{pci}{,/**}/block/{s,v}d[a-z]/** r, - @{sys}/devices/@{pci}{,/**}/ata@{int}/** r, - @{sys}/devices/@{pci}{,/**}/usb@{int}/** r, - @{sys}/devices/@{pci}{,/**}/virtio@{int}/** r, + @{sys}/devices/@{pci}/ata@{int}/** r, + @{sys}/devices/@{pci}/block/{s,v}d[a-z]/ r, + @{sys}/devices/@{pci}/block/{s,v}d[a-z]/** r, + @{sys}/devices/@{pci}/host@{int}/** r, + @{sys}/devices/@{pci}/usb@{int}/** r, + @{sys}/devices/@{pci}/virtio@{int}/** r, # SSD Nvme devices /dev/nvme[0-9]* rwk,