pool/apparmor
SHA256
3
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
b0ebae81de
apparmor/dnsmasq-cpu-possible.diff
Christian Boltz 0c205599ae Accepting request 999637 from home:cboltz 
- update to AppArmor 3.0.7
  - fix setuptools version detection in buildpath.py
  - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.7
    for the detailed upstream changelog
- add dnsmasq-cpu-possible.diff: allow reading /sys/devices/system/cpu/possible
  in dnsmasc//libvirt-leaseshelper profile (boo#1202849)

OBS-URL: https://build.opensuse.org/request/show/999637
OBS-URL: https://build.opensuse.org/package/show/security:apparmor/apparmor?expand=0&rev=350
2022-08-28 11:06:57 +00:00

23 lines
811 B
Diff
Raw Blame History

commit ace8e04477662aff656b341ca173d1205e02b46e
Author: Christian Boltz <apparmor@cboltz.de>
Date: Sun Aug 28 12:32:17 2022 +0200
Allow reading /sys/devices/system/cpu/possible
... in the dnsmasq//libvirt_leaseshelper profile
Fixes: https://bugzilla.opensuse.org/show_bug.cgi?id=1202849
diff --git a/profiles/apparmor.d/usr.sbin.dnsmasq b/profiles/apparmor.d/usr.sbin.dnsmasq
index 379d72fb0..9a5ca0b78 100644
--- a/profiles/apparmor.d/usr.sbin.dnsmasq
+++ b/profiles/apparmor.d/usr.sbin.dnsmasq
@@ -127,6 +127,7 @@ profile dnsmasq /usr/{bin,sbin}/dnsmasq flags=(attach_disconnected) {
owner @{PROC}/@{pid}/status r,
@{sys}/devices/system/cpu/ r,
+ @{sys}/devices/system/cpu/possible r,
@{sys}/devices/system/node/ r,
@{sys}/devices/system/node/*/meminfo r,
Reference in New Issue View Git Blame Copy Permalink