From 828f282fc3bc41aa3dea627d61f41a797ffaeffc Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Fri, 22 Mar 2024 13:11:49 +0000
Subject: [PATCH] feat(profile): cleanup unix_chpwd already present in abs.

---
 apparmor.d/groups/ssh/sshd             | 1 -
 apparmor.d/groups/virt/cockpit-session | 2 --
 apparmor.d/profiles-a-f/atd            | 1 -
 apparmor.d/profiles-g-l/i3lock         | 2 --
 apparmor.d/profiles-g-l/kcheckpass     | 2 --
 apparmor.d/profiles-g-l/login          | 1 -
 6 files changed, 9 deletions(-)

diff --git a/apparmor.d/groups/ssh/sshd b/apparmor.d/groups/ssh/sshd
index 8f4b9c379..7db411d42 100644
--- a/apparmor.d/groups/ssh/sshd
+++ b/apparmor.d/groups/ssh/sshd
@@ -66,7 +66,6 @@ profile sshd @{exec_path} flags=(attach_disconnected) {
   @{bin}/false                rix,
   @{bin}/nologin              rPx,
   @{bin}/passwd               rPx,
-  @{bin}/unix_chkpwd          rPx,
   @{lib}/openssh/sftp-server  rPx,
 
   @{etc_ro}/environment r,
diff --git a/apparmor.d/groups/virt/cockpit-session b/apparmor.d/groups/virt/cockpit-session
index 73d9243d4..a4c1adb04 100644
--- a/apparmor.d/groups/virt/cockpit-session
+++ b/apparmor.d/groups/virt/cockpit-session
@@ -24,8 +24,6 @@ profile cockpit-session @{exec_path} flags=(attach_disconnected) {
 
   @{exec_path} mr,
 
-  @{bin}/unix_chkpwd rPx,
-
   @{bin}/{,z,ba,da}sh    rix,
   @{bin}/cockpit-bridge  rPx,
   @{lib}/cockpit/cockpit-pcp  rPx,
diff --git a/apparmor.d/profiles-a-f/atd b/apparmor.d/profiles-a-f/atd
index c7d4ebb94..9da2f3041 100644
--- a/apparmor.d/profiles-a-f/atd
+++ b/apparmor.d/profiles-a-f/atd
@@ -28,7 +28,6 @@ profile atd @{exec_path} {
 
   @{sh_path}           rix,
   @{bin}/sendmail     rPUx,
-  @{bin}/unix_chkpwd   rPx,
   @{bin}/exim4         rPx,
 
   @{etc_ro}/environment r,
diff --git a/apparmor.d/profiles-g-l/i3lock b/apparmor.d/profiles-g-l/i3lock
index 0b5113881..a594c62ca 100644
--- a/apparmor.d/profiles-g-l/i3lock
+++ b/apparmor.d/profiles-g-l/i3lock
@@ -20,8 +20,6 @@ profile i3lock @{exec_path} {
 
   @{exec_path} mr,
 
-  @{bin}/unix_chkpwd rPx,
-
   owner @{HOME}/.Xauthority r,
 
   owner @{PROC}/@{pid}/fd/ r,
diff --git a/apparmor.d/profiles-g-l/kcheckpass b/apparmor.d/profiles-g-l/kcheckpass
index cd0d4f902..dd4343a32 100644
--- a/apparmor.d/profiles-g-l/kcheckpass
+++ b/apparmor.d/profiles-g-l/kcheckpass
@@ -18,8 +18,6 @@ profile kcheckpass @{exec_path} {
 
   @{exec_path} mr,
 
-  @{bin}/unix_chkpwd rPx,
-
   # file_inherit
   owner @{HOME}/.xsession-errors w,
 
diff --git a/apparmor.d/profiles-g-l/login b/apparmor.d/profiles-g-l/login
index e26f82aa7..f248ee7a1 100644
--- a/apparmor.d/profiles-g-l/login
+++ b/apparmor.d/profiles-g-l/login
@@ -38,7 +38,6 @@ profile login @{exec_path} flags=(attach_disconnected) {
   @{exec_path} mr,
 
   @{bin}/@{shells}     rUx,
-  @{bin}/unix_chkpwd   rPx,
 
   @{etc_ro}/environment r,
   @{etc_ro}/security/limits.d/{,*} r,