mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/profiles/apparmor.d/usr.sbin.avahi-daemon
John Johansen f1b4da2f64 policy: update to use 4.0 abi 
Begin preparing policy for the 4.0 release. This may result in new
denials. This is expected and needed to make sure policy is ready
for the 4.0 release.

Signed-off-by: John Johansen <john.johansen@canonical.com>
2023-06-30 23:36:12 -07:00

38 lines
1 KiB
Text
Raw Blame History

abi <abi/4.0>,
include <tunables/global>
profile avahi-daemon /usr/{bin,sbin}/avahi-daemon flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/consoles>
include <abstractions/dbus>
include <abstractions/nameservice>
capability chown,
capability dac_override,
capability kill,
capability setuid,
capability setgid,
capability sys_chroot,
network netlink dgram,
/etc/avahi/ r,
/etc/avahi/avahi-daemon.conf r,
/etc/avahi/hosts r,
/etc/avahi/services/ r,
/etc/avahi/services/*.service r,
@{PROC}/@{pid}/fd/ r,
@{PROC}/1/environ r,
@{PROC}/cmdline r,
@{PROC}/sys/kernel/osrelease r,
/usr/{bin,sbin}/avahi-daemon mr,
/usr/share/avahi/introspection/*.introspect r,
/usr/share/dbus-1/interfaces/org.freedesktop.Avahi.*.xml r,
@{run}/avahi-daemon/ w,
@{run}/avahi-daemon/pid krw,
@{run}/avahi-daemon/socket w,
@{run}/systemd/notify w,
# Site-specific additions and overrides. See local/README for details.
include if exists <local/usr.sbin.avahi-daemon>
}
Reference in a new issue View git blame Copy permalink