From 4234c54f52bf83173f125157bb512ad463b5d645 Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Sat, 27 Jan 2024 19:43:12 +0000 Subject: [PATCH] feat(profile): add keyboxd. --- apparmor.d/groups/gpg/keyboxd | 22 ++++++++++++++++++++++ dists/flags/main.flags | 3 ++- 2 files changed, 24 insertions(+), 1 deletion(-) create mode 100644 apparmor.d/groups/gpg/keyboxd diff --git a/apparmor.d/groups/gpg/keyboxd b/apparmor.d/groups/gpg/keyboxd new file mode 100644 index 00000000..1adf0220 --- /dev/null +++ b/apparmor.d/groups/gpg/keyboxd @@ -0,0 +1,22 @@ +# apparmor.d - Full set of apparmor profiles +# Copyright (C) 2024 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only + +abi , + +include + +@{exec_path} = @{lib}/gnupg/keyboxd +profile keyboxd @{exec_path} { + include + + @{exec_path} mr, + + owner @{HOME}/@{XDG_GPG_DIR}/common.conf r, + owner @{HOME}/@{XDG_GPG_DIR}/public-keys.d/ rw, + owner @{HOME}/@{XDG_GPG_DIR}/public-keys.d/* rwlk, + + owner @{PROC}/@{pid}/fd/ r, + + include if exists +} \ No newline at end of file diff --git a/dists/flags/main.flags b/dists/flags/main.flags index 5073f8cb..654d4d58 100644 --- a/dists/flags/main.flags +++ b/dists/flags/main.flags @@ -207,6 +207,7 @@ kde-powerdevil attach_disconnected,mediate_deleted,complain kde-systemd-start-condition complain kded5 complain kernel-install complain +keyboxd complain kglobalaccel5 complain kgx complain kio_http_cache_cleaner complain @@ -403,7 +404,7 @@ update-ca-certificates complain update-grub complain update-secureboot-policy complain userdbctl complain -utempter complain +utempter attach_disconnected,complain uuidd complain virt-manager attach_disconnected,complain virtinterfaced attach_disconnected,complain