From mboxrd@z Thu Jan 1 00:00:00 1970 Received: by passt.top (Postfix, from userid 1000) id 565055A026F; Wed, 3 Apr 2024 21:04:25 +0200 (CEST) From: Stefano Brivio To: passt-dev@passt.top Subject: [PATCH 0/3] Assorted AppArmor policy fixes for passt and pasta Date: Wed, 3 Apr 2024 21:04:18 +0200 Message-ID: <20240403190425.2848764-1-sbrivio@redhat.com> X-Mailer: git-send-email 2.43.0 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Message-ID-Hash: TZSV7BMRDQ6YCRZ5N3K2LCUDQ2ZXNH62 X-Message-ID-Hash: TZSV7BMRDQ6YCRZ5N3K2LCUDQ2ZXNH62 X-MailFrom: sbrivio@passt.top X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: =?UTF-8?q?J=C3=B6rg=20Sonnenberger?= , Danish Prakash , Christian Boltz , Paul Holzinger X-Mailman-Version: 3.3.8 Precedence: list List-Id: Development discussion and patches for passt Archived-At: Archived-At: List-Archive: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Related to: https://github.com/containers/buildah/issues/5440 https://bugzilla.suse.com/show_bug.cgi?id=1221840 Danish Prakash (1): apparmor: Fix access to procfs namespace entries in pasta's abstraction Stefano Brivio (2): apparmor: Add mount rule with explicit, empty source in passt abstraction apparmor: Expand scope of @{run}/user access, allow writing PID files too contrib/apparmor/abstractions/passt | 1 + contrib/apparmor/abstractions/pasta | 5 ++++- 2 files changed, 5 insertions(+), 1 deletion(-) -- 2.43.0