felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Use @{uid} instead of [0-9]* when it denotes the user id.

Browse source
This commit is contained in:
Alexandre Pujol 2021-04-18 19:00:15 +01:00
parent cd4ad5b09c
commit 4a35b7d804
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
137 changed files with 253 additions and 253 deletions
Download patch file Download diff file Expand all files Collapse all files

4
apparmor.d/groups/gpg/dirmngr
View file

@ -27,8 +27,8 @@ profile dirmngr @{exec_path} {
/usr/share/gnupg/sks-keyservers.netCA.pem r,
owner @{run}/user/[0-9]*/gnupg/ rw,
owner @{run}/user/[0-9]*/gnupg/S.dirmngr rw,
owner @{run}/user/@{uid}/gnupg/ rw,
owner @{run}/user/@{uid}/gnupg/S.dirmngr rw,
owner @{PROC}/@{pid}/task/@{tid}/comm rw,

2
apparmor.d/groups/gpg/gpg
View file

@ -60,7 +60,7 @@ profile gpg @{exec_path} {
owner /tmp/*.gpg.lock rwl -> /tmp/.#lk0x[0-9a-f]*.*.@{pid},
owner /tmp/.#lk0x[0-9a-f]*.*.@{pid} rw,
owner /tmp/.#lk0x[0-9a-f]*.*.@{pid}x rwl -> /tmp/.#lk0x[0-9a-f]*.*.@{pid},
owner @{run}/user/[0-9]*/gnupg/d.*/ rw,
owner @{run}/user/@{uid}/gnupg/d.*/ rw,
# Verify files
owner @{HOME}/** r,

2
apparmor.d/groups/gpg/gpg-agent
View file

@ -38,7 +38,7 @@ profile gpg-agent @{exec_path} {
# For debuild
owner /tmp/dpkg-import-key.*/private-keys-v1.d/ w,
owner @{run}/user/[0-9]*/gnupg/d.*/S.gpg-agent{,.extra,.browser,.ssh} w,
owner @{run}/user/@{uid}/gnupg/d.*/S.gpg-agent{,.extra,.browser,.ssh} w,
@{PROC}/@{pid}/fd/ r,

2
apparmor.d/groups/gpg/scdaemon
View file

@ -20,7 +20,7 @@ profile scdaemon @{exec_path} {
owner @{HOME}/@{XDG_GPG_DIR}/scdaemon.conf r,
owner @{HOME}/@{XDG_GPG_DIR}/reader_0.status rw,
owner @{run}/user/[0-9]*/gnupg/S.scdaemon rw,
owner @{run}/user/@{uid}/gnupg/S.scdaemon rw,
@{PROC}/@{pid}/task/@{tid}/comm rw,