mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-27 13:28:09 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

regression: session names 2

Browse source
This commit is contained in:
nobody43 2024-12-31 00:32:12 +00:00 committed by Alex
parent 34913ab0c0
commit 0769e42ea2
10 changed files with 11 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
apparmor.d/abstractions/app/firefox
View file

@ -125,7 +125,7 @@
@{sys}/devices/power/events/energy-* r,
@{sys}/devices/power/type r,
@{sys}/fs/cgroup/cpu,cpuacct/cpu.cfs_quota_us r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
owner @{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/**/cpu.max r,
@{PROC}/@{pid}/net/arp r,

2
apparmor.d/groups/gnome/gdm
View file

@ -92,7 +92,7 @@ profile gdm @{exec_path} flags=(attach_disconnected) {
@{sys}/devices/**/uevent r,
@{sys}/devices/@{pci}/boot_vga r,
@{sys}/devices/virtual/tty/tty@{int}/active r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/cgroup.events r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cgroup.events r,
@{PROC}/@{pid}/cgroup r,
@{PROC}/1/environ r,

2
apparmor.d/groups/ssh/sshd
View file

@ -107,7 +107,7 @@ profile sshd @{exec_path} flags=(attach_disconnected) {
owner @{run}/sshd{,.init}.pid wl,
@{sys}/fs/cgroup/*/user/*/@{int}/ rw,
@{sys}/fs/cgroup/systemd/user.slice/user-@{uid}.slice/session-*.scope/ rw,
@{sys}/fs/cgroup/systemd/user.slice/user-@{uid}.slice/session-@{word}.scope/ rw,
@{PROC}/@{pids}/fd/ r,
@{PROC}/1/environ r,

2
apparmor.d/groups/virt/k3s
View file

@ -159,7 +159,7 @@ profile k3s @{exec_path} flags=(attach_disconnected) {
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/ r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user-runtime-dir@@{uid}.service/ r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/{,**/} r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/{,**/} r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/{,**/} r,
@{sys}/kernel/mm/hugepages/ r,
@{sys}/kernel/mm/hugepages/hugepages-*/nr_hugepages r,

2
apparmor.d/profiles-a-f/briar-desktop
View file

@ -57,7 +57,7 @@ profile briar-desktop @{exec_path} {
owner @{tmp}/jna@{u64}.tmp mrw,
@{sys}/devices/system/cpu/cpu@{int}/microcode/version r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/{cpu,memory}.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/{cpu,memory}.max r,
@{sys}/kernel/mm/{hugepages/,transparent_hugepage/enabled} r,
@{PROC}/cgroups r,

2
apparmor.d/profiles-g-l/libreoffice
View file

@ -99,7 +99,7 @@ profile libreoffice @{exec_path} {
@{sys}/kernel/mm/hugepages/ r,
@{sys}/kernel/mm/transparent_hugepage/enabled r,
@{sys}/kernel/mm/transparent_hugepage/shmem_enabled r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/{cpu,memory}.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/{cpu,memory}.max r,
owner @{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/app.slice/**/memory.max r,
owner @{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/session.slice/org.gnome.Shell@wayland.service/memory.max r,

2
apparmor.d/profiles-m-r/mullvad-setup
View file

@ -13,7 +13,7 @@ profile mullvad-setup @{exec_path} {
@{exec_path} mr,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/cpu.max r,

2
apparmor.d/profiles-m-r/ouch
View file

@ -19,7 +19,7 @@ profile ouch @{exec_path} {
@{sys}/fs/cgroup/user.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
owner @{PROC}/@{pid}/cgroup r,

4
apparmor.d/profiles-s-z/signal-desktop
View file

@ -44,8 +44,8 @@ profile signal-desktop @{exec_path} {
@{sys}/fs/cgroup/user.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/memory.high r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/memory.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/memory.high r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/memory.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/cpu.max r,
owner @{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/app.slice/cpu.max r,

2
apparmor.d/profiles-s-z/virt-manager
View file

@ -85,7 +85,7 @@ profile virt-manager @{exec_path} flags=(attach_disconnected) {
@{sys}/devices/virtual/drm/ttm/uevent r,
@{sys}/fs/cgroup/user.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{int}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
@{PROC}/@{pids}/net/route r,
owner @{PROC}/@{pid}/cgroup r,