Comment 9 for bug 1641618
Revision history for this message
| Simon Déziel (sdeziel) wrote Re: [Bug 1641618] Re: Apparmor denials caused by virt-aa-helper trying to read zvol devices (/dev/zdX) should be silenced | #9 |
On 2016-11-28 10:29 AM, Philipp Marek wrote:
>> DRBD devices are always followed by digit(s) so you could use this if
>> you haven't done the change already:
>>
>> /dev/drbd[0-9]* r,
> If they are referenced by name, instead of by minor, a DRBD path might look
> like this, too:
>
> /dev/drbd/
> /dev/drbd/
Interesting, are those files actual devices or symlinks pointing to
somewhere else? I'm asking because Apparmor rules only apply to the
final destination of symlinks.