feat(profiles): add initial userns rule.

Require apparmor 4 to be enabled.
2023-11-19 11:19:24 +00:00 · 2023-11-19 11:19:24 +00:00 · 88555a12d0
commit 88555a12d0
parent 6dc990ac02
5 changed files with 11 additions and 5 deletions
--- a/apparmor.d/profiles-s-z/slirp4netns
+++ b/apparmor.d/profiles-s-z/slirp4netns
@ -10,6 +10,8 @@ include <tunables/global>
 profile slirp4netns @{exec_path} flags=(attach_disconnected) {
  include <abstractions/base>

+  # userns,
+
  capability net_admin,
  capability setpcap,
  capability sys_admin,