build: enable re-attach disconnected path by default
Ignored on Ubuntu 25.04 and abi3.0
This commit is contained in:
Alexandre Pujol
parent
c51943934e
commit
483c0c107d
3 changed files with 50 additions and 3 deletions
37
pkg/prebuild/prepare/attach.go
Normal file
37
pkg/prebuild/prepare/attach.go
Normal file
|
|
@ -0,0 +1,37 @@
|
|||
// apparmor.d - Full set of apparmor profiles
|
||||
// Copyright (C) 2021-2025 Alexandre Pujol <alexandre@pujol.io>
|
||||
// SPDX-License-Identifier: GPL-2.0-only
|
||||
|
||||
package prepare
|
||||
|
||||
import (
|
||||
"strings"
|
||||
|
||||
"github.com/roddhjav/apparmor.d/pkg/prebuild"
|
||||
)
|
||||
|
||||
type ReAttach struct {
|
||||
prebuild.Base
|
||||
}
|
||||
|
||||
func init() {
|
||||
RegisterTask(&ReAttach{
|
||||
Base: prebuild.Base{
|
||||
Keyword: "attach",
|
||||
Msg: "Configure tunable for re-attached path",
|
||||
},
|
||||
})
|
||||
}
|
||||
|
||||
func (p ReAttach) Apply() ([]string, error) {
|
||||
res := []string{}
|
||||
|
||||
// Remove the @{att} tunable that is going to be defined in profile header
|
||||
path := prebuild.RootApparmord.Join("tunables/multiarch.d/system")
|
||||
out, err := path.ReadFileAsString()
|
||||
if err != nil {
|
||||
return res, err
|
||||
}
|
||||
out = strings.ReplaceAll(out, "@{att}=/", "# @{att}=/")
|
||||
return res, path.WriteFile([]byte(out))
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue