From: Tobias Heider <tobias.heider@stusta.de>
Date: Sun, 13 Apr 2025 19:07:12 +0200
Subject: apparmor: /run/iked.sock moves to control process after recent
 changes

cherry-pick from f0da8188ae8b1778dbdd215f7bc30bd8f166aa5e
---
 linux/iked.apparmor | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/linux/iked.apparmor b/linux/iked.apparmor
index 327d3ff..0e32a0c 100644
--- a/linux/iked.apparmor
+++ b/linux/iked.apparmor
@@ -16,7 +16,6 @@ profile iked /usr/sbin/iked {
   include <abstractions/nameservice>
   /etc/iked.conf r,
   /etc/iked/** r,
-  /run/iked.sock rw,
 
   # systemd-resolved
   unix bind type=stream addr=@*/bus/iked/system,
@@ -89,6 +88,7 @@ profile iked /usr/sbin/iked {
     # privsep
     signal (receive) peer=iked,
     unix (send, receive) type=stream peer=(label=iked),
+    /run/iked.sock rw,
 
     # ikectl control sock
     network unix raw,