From 1e74ae32ea2e8c87dcc3fc815baab56e1704dd8c Mon Sep 17 00:00:00 2001
From: Christian Kujau <gitlab@nerdbynature.de>
Date: Fri, 23 May 2025 22:37:45 +0000
Subject: [PATCH] Allow lsblk to access Xen PVH disk devices

For details, please see:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2111604
---
 profiles/apparmor.d/lsblk | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/profiles/apparmor.d/lsblk b/profiles/apparmor.d/lsblk
index 9878ded48..ca505ad09 100644
--- a/profiles/apparmor.d/lsblk
+++ b/profiles/apparmor.d/lsblk
@@ -27,6 +27,9 @@ profile lsblk /usr/bin/lsblk {
   @{sys}/devices/virtual/** r,
   @{sys}/devices/platform/** r,
 
+  # Needed for Xen PVH guests
+  @{sys}/devices/vbd-[0-9]*/block/** r,
+
   # Needed for disks over network e.g. Hyper-V VMs (including Azure), IBM Power, ...
   @{sys}/devices/**/host@{int}/** r,