mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-29 13:28:19 +00:00
Code Issues Releases Wiki Activity

Merge branch 'cboltz-2.13-dnsmasq' into 'apparmor-2.13'

Browse Source 
[2.12+2.13] dnsmasq: Backport support for /usr/libexec/libvirt_leaseshelper path

References: https://build.opensuse.org/request/show/831960

See merge request apparmor/apparmor!618

Acked-by: John Johansen <john.johansen@canonical.com> for 2.12 and 2.13

(cherry picked from commit e32cbfc0e66643a143af149086ee3241cf078910)

af6bf823 Invalid path to libvirt_leaseshelper in usr.sbin.dnsmasq
f2e09aa2 policy: invalid path to libvirt_leaseshelper in usr.sbin.dnsmasq
This commit is contained in:
Christian Boltz 2020-09-06 18:06:33 +00:00
parent adc8d6f304
commit 9b0788554b
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
profiles/apparmor.d/usr.sbin.dnsmasq
View File

@ -89,6 +89,7 @@ profile /usr/sbin/dnsmasq /usr/{bin,sbin}/dnsmasq flags=(attach_disconnected) {
# libvirt lease helper # libvirt lease helper
/usr/lib{,64}/libvirt/libvirt_leaseshelper Cx -> libvirt_leaseshelper, /usr/lib{,64}/libvirt/libvirt_leaseshelper Cx -> libvirt_leaseshelper,
/usr/libexec/libvirt_leaseshelper Cx -> libvirt_leaseshelper,
# lxc-net pid and lease files # lxc-net pid and lease files
/{,var/}run/lxc/dnsmasq.pid rw, /{,var/}run/lxc/dnsmasq.pid rw,
@ -116,6 +117,7 @@ profile /usr/sbin/dnsmasq /usr/{bin,sbin}/dnsmasq flags=(attach_disconnected) {
/etc/libnl-3/classid r, /etc/libnl-3/classid r,
/usr/lib{,64}/libvirt/libvirt_leaseshelper m, /usr/lib{,64}/libvirt/libvirt_leaseshelper m,
/usr/libexec/libvirt_leaseshelper m,
owner @{PROC}/@{pid}/net/psched r, owner @{PROC}/@{pid}/net/psched r,
owner @{PROC}/@{pid}/status r, owner @{PROC}/@{pid}/status r,