mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-29 22:35:15 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

feat(aa-log): update default tunables according to guideline.

Browse source
This commit is contained in:
Alexandre Pujol 2023-08-22 23:09:34 +01:00
parent 5516eef952
commit 7273bde534
Failed to generate hash of commit
2 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
pkg/aa/variables.go
View file

@ -28,11 +28,11 @@ func DefaultTunables() *AppArmorProfile {
return &AppArmorProfile{ return &AppArmorProfile{
Preamble: Preamble{ Preamble: Preamble{
Variables: []Variable{ Variables: []Variable{
{"bin", []string{"/{usr/,}{s,}bin"}}, {"bin", []string{"/{,usr/}{,s}bin"}},
{"lib", []string{"/{usr/,}lib{,exec,32,64}"}}, {"lib", []string{"/{,usr/}lib{,exec,32,64}"}},
{"multiarch", []string{"*-linux-gnu*"}}, {"multiarch", []string{"*-linux-gnu*"}},
{"user_share_dirs", []string{"/home/*/.local/share"}}, {"user_share_dirs", []string{"/home/*/.local/share"}},
{"etc_ro", []string{"/{usr/,}etc/"}}, {"etc_ro", []string{"/{,usr/}etc/"}},
}, },
}, },
} }

6
pkg/aa/variables_test.go
View file

@ -19,11 +19,11 @@ func TestDefaultTunables(t *testing.T) {
want: &AppArmorProfile{ want: &AppArmorProfile{
Preamble: Preamble{ Preamble: Preamble{
Variables: []Variable{ Variables: []Variable{
{"bin", []string{"/{usr/,}{s,}bin"}}, {"bin", []string{"/{,usr/}{,s}bin"}},
{"lib", []string{"/{usr/,}lib{,exec,32,64}"}}, {"lib", []string{"/{,usr/}lib{,exec,32,64}"}},
{"multiarch", []string{"*-linux-gnu*"}}, {"multiarch", []string{"*-linux-gnu*"}},
{"user_share_dirs", []string{"/home/*/.local/share"}}, {"user_share_dirs", []string{"/home/*/.local/share"}},
{"etc_ro", []string{"/{usr/,}etc/"}}, {"etc_ro", []string{"/{,usr/}etc/"}},
}, },
}, },
}, },