Update profiles.

2021-09-28 21:53:50 +01:00 · 2021-09-28 21:53:50 +01:00 · b79ffa52c6
commit b79ffa52c6
parent a30fda0ad7
18 changed files with 91 additions and 143 deletions
--- a/apparmor.d/groups/virt/containerd
+++ b/apparmor.d/groups/virt/containerd
@ -21,8 +21,14 @@ profile containerd @{exec_path} {
  /{usr/,}bin/containerd-shim-runc-v2 rPUx,
  /{usr/,}bin/kmod                    rPx,

+  /etc/cni/{,**} r,
+  /etc/containerd/*.toml r,
+
+  /var/lib/containerd/{,**} rwk,
  /var/lib/docker/containerd/{,**} rwk,
+  @{run}/containerd/{,**} rwk,
  @{run}/docker/containerd/{,**} rwk,
+  /opt/containerd/{,**} rw,

  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,