From 0896343bbcf8d29f8037fce82f571ea71003621d Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Sun, 12 Jun 2022 22:17:38 +0100 Subject: [PATCH] feat(profiles): rethink the app launchers. --- apparmor.d/abstractions/app-launcher-root | 13 ++++++++----- apparmor.d/abstractions/app-launcher-user | 13 ++++++++----- 2 files changed, 16 insertions(+), 10 deletions(-) diff --git a/apparmor.d/abstractions/app-launcher-root b/apparmor.d/abstractions/app-launcher-root index c5e2f6a2..0d3c8e5f 100644 --- a/apparmor.d/abstractions/app-launcher-root +++ b/apparmor.d/abstractions/app-launcher-root @@ -1,13 +1,16 @@ # apparmor.d - Full set of apparmor profiles -# Copyright (C) 2020-2021 Mikhail Morfikov +# Copyright (C) 2020-2022 Mikhail Morfikov +# Copyright (C) 2022 Alexandre Pujol # SPDX-License-Identifier: GPL-2.0-only abi , # Root app location - / r, - /usr/ r, - /{usr/,}{s,}bin/ r, - /{usr/,}{s,}bin/[a-z0-9]* rPUx, + / r, + /usr/ r, + /{usr/,}{s,}bin/ r, + /{usr/,}{s,}bin/[a-z0-9]* rPUx, + /usr/local/{s,}bin/ r, + /usr/local/{s,}bin/[a-zA-Z0-9]* rPUx, include if exists \ No newline at end of file diff --git a/apparmor.d/abstractions/app-launcher-user b/apparmor.d/abstractions/app-launcher-user index a1f16248..7bf9094c 100644 --- a/apparmor.d/abstractions/app-launcher-user +++ b/apparmor.d/abstractions/app-launcher-user @@ -1,14 +1,17 @@ # apparmor.d - Full set of apparmor profiles -# Copyright (C) 2020-2021 Mikhail Morfikov +# Copyright (C) 2020-2022 Mikhail Morfikov +# Copyright (C) 2022 Alexandre Pujol # SPDX-License-Identifier: GPL-2.0-only abi , # User app location - / r, - /usr/ r, - /{usr/,}bin/ r, - /{usr/,}bin/[a-zA-Z0-9]* rPUx, + / r, + /usr/ r, + /{usr/,}bin/ r, + /{usr/,}bin/[a-zA-Z0-9]* rPUx, + /usr/local/bin/ r, + /usr/local/bin/[a-zA-Z0-9]* rPUx, # Firefox /{usr/,}lib/ r,