From fa255b87b754a878b152f8c242be6b8a68ed0546 Mon Sep 17 00:00:00 2001
From: Stefan Agner <stefan@agner.ch>
Date: Tue, 30 Apr 2024 14:13:09 +0200
Subject: [PATCH] AppArmor: Explicitly allow netlink raw socket for Supervisor
 on stable (#372)

Apply #370 to stable as well.
---
 apparmor_stable.txt | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/apparmor_stable.txt b/apparmor_stable.txt
index 6f768936..cdf4ebd5 100644
--- a/apparmor_stable.txt
+++ b/apparmor_stable.txt
@@ -4,8 +4,12 @@ profile hassio-supervisor flags=(attach_disconnected,mediate_deleted) {
   #include <abstractions/base>
   #include <abstractions/python>
 
-  network,
-  deny network raw,
+  network unix stream,
+  network inet stream,
+  network inet6 stream,
+  network inet dgram,
+  network inet6 dgram,
+  network netlink raw,
 
   signal (send) set=(kill,term,int,hup,cont),