felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

doc: improve documentation.

Browse source
This commit is contained in:
Alexandre Pujol 2024-06-03 19:06:02 +01:00
parent ff16790421
commit 0fa7985f0e
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
11 changed files with 58 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

17
docs/development/guidelines.md
View file

@ -91,24 +91,23 @@ If there is no predictable label it can be omitted.
### Profile rules
`bin, sbin & lib`
#### :material-numeric-1-circle: Variables
: - Do not use: `/usr/lib` or `/usr/bin` but `@{bin}/` or `@{lib}/`
- Do not use: `/usr/sbin` or `/sbin` but `@{bin}/`.
: Always use the apparmor [variables](../variables.md).
Example:
`Variables`
- `/usr/lib` or `/usr/bin` become `@{bin}` or `@{lib}`
- `/usr/sbin` or `/sbin` become `@{bin}`.
: Always use the apparmor variables.
`Sort`
#### :material-numeric-2-circle: Sort
: In a rule block, the rules must be alphabetically sorted.
`Sub profile`
#### :material-numeric-3-circle: Sub profile
: Sub profile should come at the end of a profile.
`Similar purpose`
#### :material-numeric-4-circle: Similar purpose
: When some rules share similar purpose, they may be sorted together. Eg:
```