apparmor/parser/tst/simple_tests/all/bad_02.sd at 762df7e753aa4c824c8768c6ee1c7401334d04af - mirrors/apparmor - Forgejo: Beyond coding. We Forge.

mirrors/apparmor

mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 16:35:02 +01:00

John Johansen 197d00d21a parser: add support for a generic all rule type

Extend the policy syntax to have a rule that allows specifying all
permissions for all rule types.

  allow all,

This is useful for making blacklist based policy, but can also be
useful when combined with other rule prefixes, eg. to add audit
to all rules.

  audit access all,

Signed-off-by: John Johansen <john.johansen@canonical.com>

2023-09-07 01:30:15 -07:00

8 lines

89 B

Text

Raw Blame History

 #
 #=Description basic ptrace all rule
 #=EXRESULT FAIL
 #
 /usr/bin/foo {
   owner all,
   }