felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Profiles update.

Browse source
This commit is contained in:
Alexandre Pujol 2021-09-26 17:28:26 +01:00
parent 937171d40c
commit 18e4745fb1
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
27 changed files with 103 additions and 67 deletions
Download patch file Download diff file Expand all files Collapse all files

4
apparmor.d/profiles-g-l/kmod
View file

@ -9,7 +9,7 @@ include <tunables/global>
@{exec_path} = /{usr/,}bin/{kmod,lsmod}
@{exec_path} += /{usr/,}{s,}bin/{depmod,insmod,lsmod,rmmod,modinfo,modprobe}
profile kmod @{exec_path} {
profile kmod @{exec_path} flags=(attach_disconnected) {
include <abstractions/base>
include <abstractions/consoles>
@ -59,5 +59,7 @@ profile kmod @{exec_path} {
owner @{user_build_dirs}/**/debian/*/lib/modules/*/kernel/{,**/} r,
owner @{user_build_dirs}/**/debian/*/lib/modules/*/kernel/**/*.ko r,
deny /apparmor/.null rw,
include if exists <local/kmod>
}