mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-09 02:41:03 +01:00
730db17607
Tag profiles and abstractions with abi information. Tagging abstractions is not strictly necessary but allows the parser to detect when their is a mismatch and that policy will need an update for abi. We do not currently tag the tunables because variable declarations are not currently affected by abi. MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/491 Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Steve Beattie <sbeattie@ubuntu.com>
40 lines
1.2 KiB
Text
40 lines
1.2 KiB
Text
# vim:syntax=apparmor
|
|
# Users of this abstraction need to #include the ubuntu-helpers abstraction
|
|
# in the toplevel profile. Eg:
|
|
# #include <abstractions/ubuntu-helpers>
|
|
|
|
abi <abi/3.0>,
|
|
|
|
# Apport
|
|
/usr/bin/apport-bug Cx -> sanitized_helper,
|
|
|
|
# Package installation
|
|
/usr/bin/apturl Cxr -> sanitized_helper,
|
|
/usr/share/software-center/software-center Cxr -> sanitized_helper,
|
|
|
|
# Input Methods
|
|
/usr/bin/scim Cx -> sanitized_helper,
|
|
/usr/bin/scim-bridge Cx -> sanitized_helper,
|
|
|
|
# File managers
|
|
/usr/bin/nautilus Cxr -> sanitized_helper,
|
|
/usr/bin/{t,T}hunar Cxr -> sanitized_helper,
|
|
/usr/bin/dolphin Cxr -> sanitized_helper,
|
|
|
|
# Themes
|
|
/usr/bin/gnome-appearance-properties Cxr -> sanitized_helper,
|
|
|
|
# Kubuntu
|
|
/usr/lib/mozilla/kmozillahelper Cxr -> sanitized_helper,
|
|
|
|
# Exo-aware applications
|
|
/usr/bin/exo-open ixr,
|
|
/usr/lib/@{multiarch}/xfce4/exo-1/exo-helper-1 ixr,
|
|
/etc/xdg/xdg-xubuntu/xfce4/helpers.rc r,
|
|
/etc/xdg/xfce4/helpers.rc r,
|
|
|
|
# unity webapps integration. Could go in its own abstraction
|
|
owner /run/user/*/dconf/user rw,
|
|
owner @{HOME}/.local/share/unity-webapps/availableapps*.db rwk,
|
|
/usr/bin/debconf-communicate Cxr -> sanitized_helper,
|
|
owner @{HOME}/.config/libaccounts-glib/accounts.db rk,
|