passt/contrib/apparmor/abstractions
Stefano Brivio abf5ef6c22 apparmor: Allow pasta to remount /proc, access entries under its own copy
Since commit b0e450aa85 ("pasta: Detach mount namespace, (re)mount
procfs before spawning command"), we need to explicitly permit mount
of /proc, and access to entries under /proc/PID/net (after remount,
that's what AppArmor sees as path).

Fixes: b0e450aa85 ("pasta: Detach mount namespace, (re)mount procfs before spawning command")
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
2023-09-07 00:31:35 +02:00
..
passt apparmor: Allow read-only access to uid_map 2023-09-07 00:31:35 +02:00
pasta apparmor: Allow pasta to remount /proc, access entries under its own copy 2023-09-07 00:31:35 +02:00