Skip to content
This repository was archived by the owner on Oct 13, 2023. It is now read-only.

Commit 5b1b6a5

Browse files
AkihiroSudaAkihiroSuda
authored
Merge pull request #40564 from thaJeztah/19.03_backport_apparmor_fixes
[19.03 backport] AppArmor fixes Upstream-commit: 1db5199ddce6a9e94421427c9109f25e03c03fa6 Component: engine
2 parents 44a8a4e + b9b1b0b commit 5b1b6a5

1 file changed

Lines changed: 3 additions & 2 deletions

File tree

components/engine/contrib/apparmor/template.go

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -29,10 +29,11 @@ profile /usr/bin/docker (attach_disconnected, complain) {
2929
capability,
3030
owner /** rw,
3131
@{DOCKER_GRAPH_PATH}/** rwl,
32-
@{DOCKER_GRAPH_PATH}/linkgraph.db k,
3332
@{DOCKER_GRAPH_PATH}/network/files/boltdb.db k,
3433
@{DOCKER_GRAPH_PATH}/network/files/local-kv.db k,
35-
@{DOCKER_GRAPH_PATH}/[0-9]*.[0-9]*/linkgraph.db k,
34+
# For user namespaces:
35+
@{DOCKER_GRAPH_PATH}/[0-9]*.[0-9]*/network/files/boltdb.db k,
36+
@{DOCKER_GRAPH_PATH}/[0-9]*.[0-9]*/network/files/local-kv.db k,
3637
3738
# For non-root client use:
3839
/dev/urandom r,

0 commit comments

Comments
 (0)