mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-07 01:41:00 +01:00
d9ab83281b
Local policy may want to extend or override abstractions, so add support for including local updates to them. Acked-by: Christian Boltz <apparmor@cboltz.de> Acked-by: intrigeri <intrigeri@boum.org> Signed-off-by: John Johansen <john.johansen@canonical.com>
30 lines
987 B
Text
30 lines
987 B
Text
# ------------------------------------------------------------------
|
|
#
|
|
# Copyright (C) 2012 Canonical Ltd.
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of version 2 of the GNU General Public
|
|
# License published by the Free Software Foundation.
|
|
#
|
|
# ------------------------------------------------------------------
|
|
|
|
/etc/pkcs11/ r,
|
|
/etc/pkcs11/pkcs11.conf r,
|
|
/etc/pkcs11/modules/ r,
|
|
/etc/pkcs11/modules/* r,
|
|
|
|
/usr/lib{,32,64}/pkcs11/*.so mr,
|
|
/usr/lib/@{multiarch}/pkcs11/*.so mr,
|
|
|
|
/usr/share/p11-kit/modules/ r,
|
|
/usr/share/p11-kit/modules/* r,
|
|
|
|
# gnome-keyring pkcs11 module
|
|
owner /{,var/}run/user/[0-9]*/keyring*/pkcs11 rw,
|
|
|
|
# p11-kit also supports reading user configuration from ~/.pkcs11 depending
|
|
# on how /etc/pkcs11/pkcs11.conf is configured. This should generally not be
|
|
# included in this abstraction.
|
|
|
|
# Include additions to the abstraction
|
|
#include if exists <abstractions/p11-kit.d>
|