mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-15 07:54:17 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

feat(profile): improve dpkg deb & split.

Browse Source
This commit is contained in:
Alexandre Pujol 2024-05-07 16:12:29 +01:00
parent 9a2f4b5dbe
commit 4ada6f5879
No known key found for this signature in database
GPG Key ID: C5469996F0DF68EC
2 changed files with 9 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
apparmor.d/groups/apt/dpkg-deb
View File

@ -21,22 +21,17 @@ profile dpkg-deb @{exec_path} {
@{bin}/tar rix,
@{bin}/rm rix,
/var/cache/apt/archives/*.deb r,
owner /var/lib/dpkg/tmp.ci/ w,
owner /var/lib/dpkg/tmp.ci/* w,
# For creating deb packages
owner @{tmp}/dpkg-deb.* rw,
owner @{user_build_dirs}/** rwkl -> @{user_build_dirs}/**,
owner @{user_pkg_dirs}/** r,
owner @{tmp}/dpkg-deb.*/ rw,
owner @{tmp}/dpkg-deb.*/* rw,
# For extracting deb packages to /tmp/
owner @{tmp}/** rw,
/var/cache/apt/archives/*.deb r,
# For package building
@{user_build_dirs}/** rwkl -> @{user_build_dirs}/**,
audit owner @{tmp}/dpkg-deb.* rw,
audit owner @{tmp}/dpkg-deb.*/ rw,
audit owner @{tmp}/dpkg-deb.*/* rw,
include if exists <local/dpkg-deb>
}

4
apparmor.d/groups/apt/dpkg-split
View File

@ -26,8 +26,8 @@ profile dpkg-split @{exec_path} {
/var/cache/apt/archives/*.deb r,
# For package building
@{user_build_dirs}/** rwkl -> @{user_build_dirs}/**,
owner @{user_build_dirs}/** rwkl -> @{user_build_dirs}/**,
owner @{user_pkg_dirs}/** r,
include if exists <local/dpkg-split>
}