mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-07 01:41:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/profiles/apparmor.d/abstractions
History
Vincas Dargis 7b7e98a549 Update fonts abstraction for Debian 
Mikhail Morfikov has discovered [0] that some font packages in Debian
ships font files in /usr/bin/fonts-foo-bar (like
/usr/share/fonts-font-awesome/ for example). This produces denials for
GUI applications.

Update fonts abstraction to allow reading /usr/bin/fonts-* directories.

Also, refactor abstraction to aggregate two old rules into one.

Closes #94

[0] https://gitlab.com/apparmor/apparmor/-/issues/94
2020-06-27 11:48:22 +03:00
..
apparmor_api Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-browsers.d Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
apache2-common Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
aspell abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
audio abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
authentication Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
base abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
bash abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
consoles abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
cups-client abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dbus Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
dbus-accessibility Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
dbus-accessibility-strict abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dbus-network-manager-strict abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dbus-session Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
dbus-session-strict abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dbus-strict abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dconf abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dovecot-common abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dri-common abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
dri-enumerate abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
enchant Support libenchant-2-2 2020-06-17 09:20:25 +02:00
exo-open Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
fcitx Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
fcitx-strict Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
fonts Update fonts abstraction for Debian 2020-06-27 11:48:22 +03:00
freedesktop.org abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
gio-open Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
gnome Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
gnupg abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
gvfs-open Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ibus abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
kde Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
kde-globals-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
kde-icon-cache-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
kde-language-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
kde-open5 Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
kerberosclient abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ldapclient Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
libpam-systemd Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
likewise abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
mdns abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
mesa abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
mir abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
mozc abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
mysql abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
nameservice Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
nis abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
nss-systemd abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
nvidia abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
opencl Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
opencl-common abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
opencl-intel Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
opencl-mesa Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
opencl-nvidia Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
opencl-pocl Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
openssl abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
orbit2 abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
p11-kit abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
perl abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
php abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
php5 Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
postfix-common abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
private-files abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
private-files-strict Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
python abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
qt5 abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
qt5-compose-cache-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
qt5-settings-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
recent-documents-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ruby abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
samba abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
smbpass abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ssl_certs abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ssl_keys abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
svn-repositories abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ubuntu-bittorrent-clients Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-browsers Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-console-browsers Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-console-email Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-email Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-feed-readers Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-gnome-terminal Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-helpers Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-konsole Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-media-players Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-unity7-base Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
ubuntu-unity7-launcher abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ubuntu-unity7-messaging abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
ubuntu-xterm Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
user-download abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
user-mail abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
user-manpages abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
user-tmp abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
user-write abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
video abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
vulkan abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
wayland abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
web-data abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
winbind abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
wutmp abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
X Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00
xad abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
xdg-desktop abstractions: remove '#' from 'include if exists' 2020-05-30 19:53:49 +02:00
xdg-open Change #include to include in abstractions and tunables 2020-06-09 23:28:41 +02:00