diff --git a/promtail/apparmor.txt b/promtail/apparmor.txt index 327b547..2fe2702 100644 --- a/promtail/apparmor.txt +++ b/promtail/apparmor.txt @@ -3,7 +3,7 @@ # Systemd Journal location @{journald}=/{run,var}/log/journal/{,**} -profile promtail flags=(attach_disconnected,mediate_deleted) { +profile hassio_promtail flags=(attach_disconnected,mediate_deleted) { #include # Capabilities @@ -42,7 +42,6 @@ profile promtail flags=(attach_disconnected,mediate_deleted) { # Start new profile for service /usr/bin/promtail cx -> promtail_profile, - /usr/bin/yq cx -> yq_profile, profile promtail_profile flags=(attach_disconnected,mediate_deleted) { include @@ -64,13 +63,14 @@ profile promtail_profile flags=(attach_disconnected,mediate_deleted) { /data/promtail/** rwk, # Config & log data - @{do_etc}/promtail/config.yaml r, + @{do_etc}/promtail/* rw, /config/promtail/{,**} r, /{share,ssl}/** r, @{journald} r, # Runtime usage /usr/bin/promtail rm, + /usr/bin/yq rm, @{do_etc}/{hosts,passwd} r, @{do_etc}/{resolv,nsswitch}.conf r, @{PROC}/sys/net/core/somaxconn r, @@ -78,18 +78,4 @@ profile promtail_profile flags=(attach_disconnected,mediate_deleted) { /dev/null k, @{do_etc}/ssl/certs/** r, } - - profile yq_profile flags=(attach_disconnected,mediate_deleted) { - include - - # Config files - @{do_etc}/promtail/* rw, - /config/promtail/{,**} r, - /share/** r, - - # Runtime usage - /usr/bin/yq rm, - @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r, - /dev/null k, - } } \ No newline at end of file diff --git a/promtail/config.yaml b/promtail/config.yaml index bdddeb5..7eabb1f 100644 --- a/promtail/config.yaml +++ b/promtail/config.yaml @@ -2,7 +2,7 @@ name: Promtail url: https://gitea.bonelle-family.dscloud.biz/francois.bonelle/hassio-repo.git version: 2.8.4 -slug: promtail +slug: hassio_promtail arch: - aarch64 - amd64