felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Profiles update.

Browse source
This commit is contained in:
Alexandre Pujol 2022-03-17 14:01:50 +00:00
parent bb0847f5df
commit 4ff371e739
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
22 changed files with 67 additions and 33 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apparmor.d/profiles-a-f/aa-log
View file

@ -9,6 +9,7 @@ include <tunables/global>
@{exec_path} = /{usr/,}bin/aa-log
profile aa-log @{exec_path} {
include <abstractions/base>
include <abstractions/consoles>
@{exec_path} mr,

12
apparmor.d/profiles-a-f/fwupd
View file

@ -31,20 +31,22 @@ profile fwupd @{exec_path} flags=(complain,attach_disconnected) {
/{usr/,}bin/gpgconf rCx -> gpg,
/{usr/,}bin/gpgsm rCx -> gpg,
/usr/share/fwupd/{,**} r,
/usr/share/mime/mime.cache r,
/etc/pki/fwupd/{,**} r,
/etc/pki/fwupd-metadata/{,**} r,
/etc/fwupd/{,**} r,
/usr/share/fwupd/{,**} r,
/etc/fwupd/remotes.d/* rw,
/var/cache/fwupd/{,**} rw,
/var/lib/fwupd/{,**} rw,
/var/lib/fwupd/pending.db rwk,
/boot/{,**} r,
/boot/EFI/arch/fwupdx[0-9]*.efi rw,
/boot/EFI/arch/fw/fwupd-*.cap{,.*} rw,
/usr/share/mime/mime.cache r,
/boot/EFI/*/.goutputstream-* rw,
/boot/EFI/*/fw/fwupd-*.cap{,.*} rw,
/boot/EFI/*/fwupdx[0-9]*.efi rw,
/etc/machine-id r,
/var/lib/dbus/machine-id r,