Skip to content

Commit

Permalink
feat(profile): improve snap & login bus.
Browse files Browse the repository at this point in the history
  • Loading branch information
@roddhjav
roddhjav committed Jan 9, 2025
1 parent bffb837 commit 17520a9
Show file tree
Hide file tree
Showing 3 changed files with 3 additions and 1 deletion.
2 changes: 1 addition & 1 deletion apparmor.d/abstractions/bus/org.freedesktop.login1
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,7 +21,7 @@

dbus receive bus=system path=/org/freedesktop/login1
interface=org.freedesktop.login1.Manager
member={SessionNew,SessionRemoved,UserNew,UserRemoved,PrepareFor*}
member={SessionNew,SessionRemoved,UserNew,UserRemoved,SeatNew,PrepareFor*}
peer=(name="{@{busname},org.freedesktop.login1}", label=systemd-logind),

dbus send bus=system path=/org/freedesktop/login1
Expand Down
1 change: 1 addition & 0 deletions apparmor.d/profiles-s-z/snap
View file
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,7 @@ profile snap @{exec_path} {
@{run}/mount/utab r,
@{run}/snapd.socket rw,

@{sys}/fs/cgroup/cgroup.controllers r,
@{sys}/kernel/security/apparmor/features/{,**} r,

@{PROC}/@{pids}/cgroup r,
Expand Down
1 change: 1 addition & 0 deletions apparmor.d/profiles-s-z/snapd
View file
Original file line number Diff line number Diff line change
Expand Up @@ -153,6 +153,7 @@ profile snapd @{exec_path} {
@{run}/systemd/private rw,

@{sys}/fs/cgroup/{,*/} r,
@{sys}/fs/cgroup/cgroup.controllers r,
@{sys}/fs/cgroup/system.slice/{,**/} r,
@{sys}/fs/cgroup/user.slice/ r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/{,**/} r,
Expand Down

0 comments on commit 17520a9

Please sign in to comment.