apparmor

mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-05 17:01:00 +01:00

History

Tyler Hicks 1580ba5ac1 parser: Add dbus eavesdrop permission support to apparmor_parser Allows for the policy writer to grant permission to eavesdrop on the specified bus. Some example rules for granting the eavesdrop permission are: # Grant send, receive, bind, and eavesdrop dbus, # Grant send, receive, bind, and eavesdrop on the session bus dbus bus=session, # Grant send and eavesdrop on the system bus dbus (send eavesdrop) bus=system, # Grant eavesdrop on any bus dbus eavesdrop, Eavesdropping rules can contain the bus conditional. Any other conditionals are not compatible with eavesdropping rules and the parser will return an error. Signed-off-by: Tyler Hicks <tyhicks@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com>	2013-12-06 11:17:43 -08:00
..
libapparmor	parser: Add dbus eavesdrop permission support to apparmor_parser	2013-12-06 11:17:43 -08:00

Tyler Hicks 1580ba5ac1 parser: Add dbus eavesdrop permission support to apparmor_parser

Allows for the policy writer to grant permission to eavesdrop on the
specified bus. Some example rules for granting the eavesdrop permission
are:

  # Grant send, receive, bind, and eavesdrop
  dbus,

  # Grant send, receive, bind, and eavesdrop on the session bus
  dbus bus=session,

  # Grant send and eavesdrop on the system bus
  dbus (send eavesdrop) bus=system,

  # Grant eavesdrop on any bus
  dbus eavesdrop,

Eavesdropping rules can contain the bus conditional. Any other
conditionals are not compatible with eavesdropping rules and the parser
will return an error.

Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Acked-by: Seth Arnold <seth.arnold@canonical.com>

2013-12-06 11:17:43 -08:00

libapparmor

parser: Add dbus eavesdrop permission support to apparmor_parser

2013-12-06 11:17:43 -08:00