feat(profiles): add initial userns rule.

Require apparmor 4 to be enabled.
2023-11-19 11:19:24 +00:00 · 2023-11-19 11:19:24 +00:00 · 88555a12d0
commit 88555a12d0
parent 6dc990ac02
5 changed files with 11 additions and 5 deletions
--- a/pkg/prebuild/build.go
+++ b/pkg/prebuild/build.go
@ -22,11 +22,9 @@ var (
 	regAttachments   = regexp.MustCompile(`(profile .* @{exec_path})`)
 	regFlags         = regexp.MustCompile(`flags=\(([^)]+)\)`)
 	regProfileHeader = regexp.MustCompile(` {`)
-	regAbi4To3       = util.ToRegexRepl([]string{
-		`abi/4.0`, `abi/3.0`,
-		`(?m)^.*mqueue.*$`, ``,
-		`(?m)^.*userns.*$`, ``,
-		`(?m)^.*io_uring.*$`, ``,
+	regAbi4To3       = util.ToRegexRepl([]string{ // Currently Abi3 -> Abi4
+		`abi/3.0`, `abi/4.0`,
+		`# userns,`, `userns,`,
 	})
 )