felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2024-06-23 11:25:17 +01:00
parent 2e127ace4b
commit ae71b323c2
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
29 changed files with 80 additions and 40 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/groups/systemd/systemd-machine-id-setup
View file

@ -19,6 +19,7 @@ profile systemd-machine-id-setup @{exec_path} flags=(attach_disconnected) {
ptrace (read),
mount options=(rw rshared) -> /,
mount options=(rw rslave) -> /,
umount /etc/machine-id,

1
apparmor.d/groups/systemd/systemd-udevd
View file

@ -93,6 +93,7 @@ profile systemd-udevd @{exec_path} flags=(attach_disconnected,complain) {
@{run}/udev/ rw,
@{run}/udev/** rwk,
@{run}/credentials/systemd-udev-load-credentials.service/ r,
@{run}/systemd/network/ r,
@{run}/systemd/network/*.link rw,
@{run}/systemd/notify rw,

2
apparmor.d/groups/systemd/systemd-user-runtime-dir
View file

@ -20,6 +20,8 @@ profile systemd-user-runtime-dir @{exec_path} {
capability net_admin,
capability sys_admin,
network unix stream,
mount fstype=tmpfs options=(rw,nosuid,nodev) -> @{run}/user/@{uid}/,
umount @{run}/user/@{uid}/,