mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-18 00:48:10 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(abs): general update.

Browse source
This commit is contained in:
Alexandre Pujol 2024-06-23 11:17:56 +01:00
parent 856a9a467e
commit 2e127ace4b
Failed to generate hash of commit
2 changed files with 8 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/abstractions/app/open
View file

@ -9,6 +9,7 @@
@{open_path} mrix, @{open_path} mrix,
@{sh_path} r, @{sh_path} r,
@{bin}/env rix,
/dev/tty rw, /dev/tty rw,

9
apparmor.d/abstractions/common/app
View file

@ -33,7 +33,7 @@
dbus bus=system, dbus bus=system,
/usr/cache/** r, /usr/cache/** r,
/usr/local/** r, /usr/local/{,**} r,
/usr/share/** rk, /usr/share/** rk,
/etc/{,**} r, /etc/{,**} r,
@ -84,7 +84,7 @@
@{PROC}/ r, @{PROC}/ r,
@{PROC}/@{pid}/cgroup r, @{PROC}/@{pid}/cgroup r,
@{PROC}/@{pid}/cmdline r, @{PROC}/@{pid}/cmdline r,
@{PROC}/@{pid}/comm r, @{PROC}/@{pid}/comm rk,
@{PROC}/@{pid}/fd/ r, @{PROC}/@{pid}/fd/ r,
@{PROC}/@{pid}/mountinfo r, @{PROC}/@{pid}/mountinfo r,
@{PROC}/@{pid}/net/** r, @{PROC}/@{pid}/net/** r,
@ -94,6 +94,7 @@
@{PROC}/@{pid}/task/@{tid}/stat r, @{PROC}/@{pid}/task/@{tid}/stat r,
@{PROC}/@{pid}/task/@{tid}/status r, @{PROC}/@{pid}/task/@{tid}/status r,
@{PROC}/bus/pci/devices r, @{PROC}/bus/pci/devices r,
@{PROC}/cmdline r,
@{PROC}/driver/** r, @{PROC}/driver/** r,
@{PROC}/locks r, @{PROC}/locks r,
@{PROC}/pressure/cpu r, @{PROC}/pressure/cpu r,
@ -104,6 +105,7 @@
@{PROC}/sys/kernel/pid_max r, @{PROC}/sys/kernel/pid_max r,
@{PROC}/sys/kernel/sched_autogroup_enabled r, @{PROC}/sys/kernel/sched_autogroup_enabled r,
@{PROC}/sys/kernel/yama/ptrace_scope r, @{PROC}/sys/kernel/yama/ptrace_scope r,
@{PROC}/sys/net/core/bpf_jit_enable r,
@{PROC}/uptime r, @{PROC}/uptime r,
@{PROC}/version r, @{PROC}/version r,
@{PROC}/zoneinfo r, @{PROC}/zoneinfo r,
@ -119,15 +121,18 @@
owner @{PROC}/@{pid}/mounts r, owner @{PROC}/@{pid}/mounts r,
owner @{PROC}/@{pid}/net/if_inet6 r, owner @{PROC}/@{pid}/net/if_inet6 r,
owner @{PROC}/@{pid}/oom_score_adj rw, owner @{PROC}/@{pid}/oom_score_adj rw,
owner @{PROC}/@{pid}/pagemap r,
owner @{PROC}/@{pid}/statm r, owner @{PROC}/@{pid}/statm r,
owner @{PROC}/@{pid}/task/ r, owner @{PROC}/@{pid}/task/ r,
owner @{PROC}/@{pid}/task/@{tid}/comm rw, owner @{PROC}/@{pid}/task/@{tid}/comm rw,
/dev/hidraw@{int} rw, /dev/hidraw@{int} rw,
/dev/input/ r, /dev/input/ r,
/dev/input/event@{int} rw,
/dev/ptmx rw, /dev/ptmx rw,
/dev/pts/ptmx rw, /dev/pts/ptmx rw,
/dev/tty rw, /dev/tty rw,
/dev/udmabuf rw,
include if exists <abstractions/common/app.d> include if exists <abstractions/common/app.d>