From 6d67cb0f3687e91ebf17c5424adb2dd7f925bf0a Mon Sep 17 00:00:00 2001
From: nobodysu <nobodysu@users.noreply.github.com>
Date: Wed, 25 May 2022 02:26:04 +0300
Subject: [PATCH] one more

---
 apparmor.d/profiles-s-z/usb-devices | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/apparmor.d/profiles-s-z/usb-devices b/apparmor.d/profiles-s-z/usb-devices
index 7b12a9726..271ebfb98 100644
--- a/apparmor.d/profiles-s-z/usb-devices
+++ b/apparmor.d/profiles-s-z/usb-devices
@@ -9,8 +9,12 @@ include <tunables/global>
 @{exec_path} = /{usr/,}bin/usb-devices
 profile usb-devices @{exec_path} {
   include <abstractions/base>
+  include <abstractions/consoles>
   include <abstractions/devices-usb>
 
+       capability dac_read_search,
+  deny capability dac_override,
+
   @{exec_path} r,
   /{usr/,}bin/{,ba,da}sh rix,