apparmor update

2026-01-10 18:01:03 +01:00 · 2022-06-23 18:24:27 +02:00
parent 1eafd90da5
commit 9339132906
67 changed files with 185 additions and 0 deletions
--- a/addons_updater/apparmor.txt
+++ b/addons_updater/apparmor.txt
@@ -31,6 +31,11 @@ profile addon_updater flags=(attach_disconnected,mediate_deleted) {
  /etc/cont-init.d/** rwix,
  /etc/cont-finish.d/** rwix,
  /run/** rwk,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # bashio
  /usr/lib/bashio/** ix,
--- a/arpspoof/apparmor.txt
+++ b/arpspoof/apparmor.txt
@@ -47,6 +47,8 @@ profile arpspoof_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/bazarr/apparmor.txt
+++ b/bazarr/apparmor.txt
@@ -48,6 +48,8 @@ profile bazarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/bitwarden/apparmor.txt
+++ b/bitwarden/apparmor.txt
@@ -47,6 +47,8 @@ profile bitwarden_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/booksonic_air/apparmor.txt
+++ b/booksonic_air/apparmor.txt
@@ -47,6 +47,8 @@ profile booksonic-air_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/calibre/apparmor.txt
+++ b/calibre/apparmor.txt
@@ -47,6 +47,8 @@ profile calibre_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/calibre_web/apparmor.txt
+++ b/calibre_web/apparmor.txt
@@ -47,6 +47,8 @@ profile calibre-web_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/cloudcommander/apparmor.txt
+++ b/cloudcommander/apparmor.txt
@@ -47,6 +47,8 @@ profile cloudcommander_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/code-server/apparmor.txt
+++ b/code-server/apparmor.txt
@@ -47,6 +47,8 @@ profile code_server_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/elasticsearch/apparmor.txt
+++ b/elasticsearch/apparmor.txt
@@ -36,6 +36,11 @@ profile inadyn_addon flags=(attach_disconnected,mediate_deleted) {
  /etc/services.d/** rwix,
  /etc/cont-init.d/** rwix,
  /etc/cont-finish.d/** rwix,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,
  /init rix,
  /var/run/** mrwkl,
  /var/run/ mrwkl,
--- a/emby/apparmor.txt
+++ b/emby/apparmor.txt
@@ -47,6 +47,8 @@ profile addon_db21ed7f_emby_nas flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/enedisgateway2mqtt/apparmor.txt
+++ b/enedisgateway2mqtt/apparmor.txt
@@ -43,6 +43,11 @@ profile inadyn_addon flags=(attach_disconnected,mediate_deleted) {

  # Data access
  /data/** rw,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # suppress ptrace denials when using 'docker ps' or using 'ps' inside a container
  ptrace (trace,read) peer=docker-default,
--- a/enedisgateway2mqtt_dev/apparmor.txt
+++ b/enedisgateway2mqtt_dev/apparmor.txt
@@ -40,6 +40,11 @@ profile inadyn_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/filebrowser/apparmor.txt
+++ b/filebrowser/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_qbittorrent flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/fireflyiii/apparmor.txt
+++ b/fireflyiii/apparmor.txt
@@ -47,6 +47,8 @@ profile fireflyiii_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/fireflyiii_data_importer/apparmor.txt
+++ b/fireflyiii_data_importer/apparmor.txt
@@ -47,6 +47,8 @@ profile fireflyiii_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/fireflyiii_fints_importer/apparmor.txt
+++ b/fireflyiii_fints_importer/apparmor.txt
@@ -47,6 +47,8 @@ profile fireflyiii_fints_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/flaresolverr/apparmor.txt
+++ b/flaresolverr/apparmor.txt
@@ -47,6 +47,8 @@ profile joplin flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/flexget/apparmor.txt
+++ b/flexget/apparmor.txt
@@ -40,6 +40,11 @@ profile flexget_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/gazpar2mqtt/apparmor.txt
+++ b/gazpar2mqtt/apparmor.txt
@@ -40,6 +40,11 @@ profile inadyn_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/grav/apparmor.txt
+++ b/grav/apparmor.txt
@@ -47,6 +47,8 @@ profile grav_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/guacamole/apparmor.txt
+++ b/guacamole/apparmor.txt
@@ -47,6 +47,8 @@ profile guacamole_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /udev/* mrwkl,
--- a/inadyn/apparmor.txt
+++ b/inadyn/apparmor.txt
@@ -40,6 +40,11 @@ profile inadyn_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/jackett/apparmor.txt
+++ b/jackett/apparmor.txt
@@ -47,6 +47,8 @@ profile jackett_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/jellyfin/apparmor.txt
+++ b/jellyfin/apparmor.txt
@@ -47,6 +47,8 @@ profile addon_db21ed7f_jellyfin_nas flags=(attach_disconnected,mediate_deleted)
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/joal/apparmor.txt
+++ b/joal/apparmor.txt
@@ -40,6 +40,11 @@ profile joal_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/joplin/apparmor.txt
+++ b/joplin/apparmor.txt
@@ -47,6 +47,8 @@ profile joplin flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/lidarr/apparmor.txt
+++ b/lidarr/apparmor.txt
@@ -47,6 +47,8 @@ profile radarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/mealie/apparmor.txt
+++ b/mealie/apparmor.txt
@@ -40,6 +40,11 @@ profile mealie_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/mylar3/apparmor.txt
+++ b/mylar3/apparmor.txt
@@ -47,6 +47,8 @@ profile mylar3_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/nextcloud/apparmor.txt
+++ b/nextcloud/apparmor.txt
@@ -47,6 +47,8 @@ profile nextcloud_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/nzbget/apparmor.txt
+++ b/nzbget/apparmor.txt
@@ -47,6 +47,8 @@ profile nzbget_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/omada/apparmor.txt
+++ b/omada/apparmor.txt
@@ -47,6 +47,8 @@ profile omada_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/ombi/apparmor.txt
+++ b/ombi/apparmor.txt
@@ -47,6 +47,8 @@ profile ombi_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/organizr/apparmor.txt
+++ b/organizr/apparmor.txt
@@ -41,6 +41,11 @@ profile organizr_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/overseerr/apparmor.txt
+++ b/overseerr/apparmor.txt
@@ -47,6 +47,8 @@ profile overseerr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/paperless_ngx/apparmor.txt
+++ b/paperless_ngx/apparmor.txt
@@ -47,6 +47,8 @@ profile addon_db21ed7f_paperless_ngx flags=(attach_disconnected,mediate_deleted)
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/papermerge/apparmor.txt
+++ b/papermerge/apparmor.txt
@@ -47,6 +47,8 @@ profile papermerge_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/photoprism/apparmor.txt
+++ b/photoprism/apparmor.txt
@@ -47,6 +47,8 @@ profile photoprism flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/piwigo/apparmor.txt
+++ b/piwigo/apparmor.txt
@@ -47,6 +47,8 @@ profile piwigo_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/plex/apparmor.txt
+++ b/plex/apparmor.txt
@@ -47,6 +47,8 @@ profile addon_db21ed7f_plex_nas flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/ttyUSB0 mrwkl,
  /dev/* mrwkl,
--- a/plex_meta_manager/apparmor.txt
+++ b/plex_meta_manager/apparmor.txt
@@ -47,6 +47,8 @@ profile plex-meta-manager_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/portainer/apparmor.txt
+++ b/portainer/apparmor.txt
@@ -40,6 +40,11 @@ profile portainer_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/prowlarr/apparmor.txt
+++ b/prowlarr/apparmor.txt
@@ -47,6 +47,8 @@ profile prowlarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/qbittorrent/apparmor.txt
+++ b/qbittorrent/apparmor.txt
@@ -53,6 +53,8 @@ profile db21ed7f_qbittorrent flags=(attach_disconnected,mediate_deleted) {
  /dev/sdb1 mrwkl,
  /dev/nvme0 mrwkl,
  /dev/nvme1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/radarr/apparmor.txt
+++ b/radarr/apparmor.txt
@@ -47,6 +47,8 @@ profile radarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/readarr/apparmor.txt
+++ b/readarr/apparmor.txt
@@ -47,6 +47,8 @@ profile readarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/requestrr/apparmor.txt
+++ b/requestrr/apparmor.txt
@@ -47,6 +47,8 @@ profile requestrr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/resiliosync/apparmor.txt
+++ b/resiliosync/apparmor.txt
@@ -47,6 +47,8 @@ profile resiliosync_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/scrutiny/apparmor.txt
+++ b/scrutiny/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_scrutiny flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/scrutiny_fa/apparmor.txt
+++ b/scrutiny_fa/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_scrutiny flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/seafile/apparmor.txt
+++ b/seafile/apparmor.txt
@@ -47,6 +47,8 @@ profile seafile_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/sonarr/apparmor.txt
+++ b/sonarr/apparmor.txt
@@ -47,6 +47,8 @@ profile sonarr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/spotweb/apparmor.txt
+++ b/spotweb/apparmor.txt
@@ -40,6 +40,11 @@ profile spotweb_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/tandoor_recipes/apparmor.txt
+++ b/tandoor_recipes/apparmor.txt
@@ -40,6 +40,11 @@ profile tandoor_recipes_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/tdarr/apparmor.txt
+++ b/tdarr/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_tdarr flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/teamspeak/apparmor.txt
+++ b/teamspeak/apparmor.txt
@@ -40,6 +40,11 @@ profile teamspeak_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/transmission/apparmor.txt
+++ b/transmission/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_transmission flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/transmission_openvpn/apparmor.txt
+++ b/transmission_openvpn/apparmor.txt
@@ -47,6 +47,8 @@ profile db21ed7f_transmission_openvpn flags=(attach_disconnected,mediate_deleted
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/ubooquity/apparmor.txt
+++ b/ubooquity/apparmor.txt
@@ -47,6 +47,8 @@ profile ubooquity_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/unpackerr/apparmor.txt
+++ b/unpackerr/apparmor.txt
@@ -47,6 +47,8 @@ profile unpackerr_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/webtop_kde/apparmor.txt
+++ b/webtop_kde/apparmor.txt
@@ -47,6 +47,8 @@ profile webtop_kde_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /udev/* mrwkl,
--- a/webtrees/apparmor.txt
+++ b/webtrees/apparmor.txt
@@ -40,6 +40,11 @@ profile webtrees_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/wger/apparmor.txt
+++ b/wger/apparmor.txt
@@ -40,6 +40,11 @@ profile wger_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/whoogle/apparmor.txt
+++ b/whoogle/apparmor.txt
@@ -47,6 +47,8 @@ profile whoogle-search_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,
--- a/xteve/apparmor.txt
+++ b/xteve/apparmor.txt
@@ -40,6 +40,11 @@ profile xteve_addon flags=(attach_disconnected,mediate_deleted) {
  /var/run/** mrwkl,
  /var/run/ mrwkl,
  /dev/i2c-1 mrwkl,
+  /dev/sda1 mrwkl,
+  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
+  /dev/mmcblk0p1 mrwkl,

  # Data access
  /data/** rw,
--- a/zoneminder/apparmor.txt
+++ b/zoneminder/apparmor.txt
@@ -47,6 +47,8 @@ profile zoneminder_addon flags=(attach_disconnected,mediate_deleted) {
  # Files required
  /dev/sda1 mrwkl,
  /dev/sdb1 mrwkl,
+  /dev/nvme0 mrwkl,
+  /dev/nvme1 mrwkl,
  /dev/mmcblk0p1 mrwkl,
  /dev/* mrwkl,
  /tmp/** mrkwl,