mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-09-01 06:45:38 +00:00
Code Issues Releases Wiki Activity

dnsmasq: allow paths for podman dnsname plugin in rootless mode

Browse Source 
In rootless mode, files needed to access are under /run/user/, so those needs to be defined separately.
This commit is contained in:
IIkka Ollakka
2022-08-22 09:52:12 +00:00
committed by Ilkka Ollakka
parent c06ea77445
commit 86069dd934
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
profiles/apparmor.d/usr.sbin.dnsmasq
View File

@@ -111,6 +111,9 @@ profile dnsmasq /usr/{bin,sbin}/dnsmasq flags=(attach_disconnected) {
@{run}/containers/cni/dnsname/*/dnsmasq.conf r, @{run}/containers/cni/dnsname/*/dnsmasq.conf r,
@{run}/containers/cni/dnsname/*/addnhosts r, @{run}/containers/cni/dnsname/*/addnhosts r,
@{run}/containers/cni/dnsname/*/pidfile rw, @{run}/containers/cni/dnsname/*/pidfile rw,
owner @{run}/user/*/containers/cni/dnsname/*/dnsmasq.conf r,
owner @{run}/user/*/containers/cni/dnsname/*/addnhosts r,
owner @{run}/user/*/containers/cni/dnsname/*/pidfile rw,
profile libvirt_leaseshelper { profile libvirt_leaseshelper {
include <abstractions/base> include <abstractions/base>