mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-18 00:48:10 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(aa-log): update default tunables according to guideline.

Browse source
This commit is contained in:
Alexandre Pujol 2023-08-22 23:09:34 +01:00
parent 5516eef952
commit 7273bde534
Failed to generate hash of commit
2 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
pkg/aa/variables.go
View file

@ -28,11 +28,11 @@ func DefaultTunables() *AppArmorProfile {
return &AppArmorProfile{
Preamble: Preamble{
Variables: []Variable{
{"bin", []string{"/{usr/,}{s,}bin"}},
{"lib", []string{"/{usr/,}lib{,exec,32,64}"}},
{"bin", []string{"/{,usr/}{,s}bin"}},
{"lib", []string{"/{,usr/}lib{,exec,32,64}"}},
{"multiarch", []string{"*-linux-gnu*"}},
{"user_share_dirs", []string{"/home/*/.local/share"}},
{"etc_ro", []string{"/{usr/,}etc/"}},
{"etc_ro", []string{"/{,usr/}etc/"}},
},
},
}

6
pkg/aa/variables_test.go
View file

@ -19,11 +19,11 @@ func TestDefaultTunables(t *testing.T) {
want: &AppArmorProfile{
Preamble: Preamble{
Variables: []Variable{
{"bin", []string{"/{usr/,}{s,}bin"}},
{"lib", []string{"/{usr/,}lib{,exec,32,64}"}},
{"bin", []string{"/{,usr/}{,s}bin"}},
{"lib", []string{"/{,usr/}lib{,exec,32,64}"}},
{"multiarch", []string{"*-linux-gnu*"}},
{"user_share_dirs", []string{"/home/*/.local/share"}},
{"etc_ro", []string{"/{usr/,}etc/"}},
{"etc_ro", []string{"/{,usr/}etc/"}},
},
},
},