felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): pacman: allow landlock to restrict itself

Browse source 
See https://docs.kernel.org/userspace-api/landlock.html#c.sys_landlock_restrict_self

fix #750
This commit is contained in:
Alexandre Pujol 2025-05-26 23:45:10 +02:00
parent e83a9a60dc
commit 77d2f923b0
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
1 changed files with 1 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/groups/pacman/pacman
View file

@ -27,6 +27,7 @@ profile pacman @{exec_path} flags=(attach_disconnected) {
capability setfcap, capability setfcap,
capability setgid, capability setgid,
capability setuid, capability setuid,
capability sys_admin,
capability sys_chroot, capability sys_chroot,
capability sys_ptrace, capability sys_ptrace,
capability sys_resource, capability sys_resource,