diff --git a/apparmor.d/abstractions/common/app b/apparmor.d/abstractions/common/app index 65ac34250..ff3b0f7f0 100644 --- a/apparmor.d/abstractions/common/app +++ b/apparmor.d/abstractions/common/app @@ -100,7 +100,6 @@ @{PROC}/pressure/io r, @{PROC}/pressure/memory r, @{PROC}/sys/fs/inotify/max_user_watches r, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/sys/kernel/osrelease r, @{PROC}/sys/kernel/pid_max r, @{PROC}/sys/kernel/sched_autogroup_enabled r, diff --git a/apparmor.d/groups/_full/default b/apparmor.d/groups/_full/default index 0b6b72f15..8067b41a2 100644 --- a/apparmor.d/groups/_full/default +++ b/apparmor.d/groups/_full/default @@ -99,7 +99,6 @@ profile default @{exec_path} flags=(attach_disconnected,mediate_deleted) { @{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/session.slice/dbus.service/memory.* r, @{PROC}/cmdline r, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/sys/kernel/seccomp/actions_avail r, @{PROC}/zoneinfo r, owner @{PROC}/@{pid}/cgroup r, diff --git a/apparmor.d/groups/akonadi/akonadi_akonotes_resource b/apparmor.d/groups/akonadi/akonadi_akonotes_resource index aea9bf790..5956c3e78 100644 --- a/apparmor.d/groups/akonadi/akonadi_akonotes_resource +++ b/apparmor.d/groups/akonadi/akonadi_akonotes_resource @@ -36,8 +36,6 @@ profile akonadi_akonotes_resource @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_archivemail_agent b/apparmor.d/groups/akonadi/akonadi_archivemail_agent index 22a2568c8..27a065274 100644 --- a/apparmor.d/groups/akonadi/akonadi_archivemail_agent +++ b/apparmor.d/groups/akonadi/akonadi_archivemail_agent @@ -42,8 +42,6 @@ profile akonadi_archivemail_agent @{exec_path} { owner @{user_share_dirs}/akonadi/file_db_data/{,**} r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_birthdays_resource b/apparmor.d/groups/akonadi/akonadi_birthdays_resource index bfc042c87..5da0cbffc 100644 --- a/apparmor.d/groups/akonadi/akonadi_birthdays_resource +++ b/apparmor.d/groups/akonadi/akonadi_birthdays_resource @@ -35,8 +35,6 @@ profile akonadi_birthdays_resource @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_contacts_resource b/apparmor.d/groups/akonadi/akonadi_contacts_resource index 03c733303..54cdc9af3 100644 --- a/apparmor.d/groups/akonadi/akonadi_contacts_resource +++ b/apparmor.d/groups/akonadi/akonadi_contacts_resource @@ -39,8 +39,6 @@ profile akonadi_contacts_resource @{exec_path} { owner @{user_share_dirs}/contacts/ r, owner @{user_share_dirs}/contacts/*.vcf w, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_control b/apparmor.d/groups/akonadi/akonadi_control index 23bfbab2a..16ee7c6c3 100644 --- a/apparmor.d/groups/akonadi/akonadi_control +++ b/apparmor.d/groups/akonadi/akonadi_control @@ -40,8 +40,6 @@ profile akonadi_control @{exec_path} { owner @{user_share_dirs}/akonadi/{,**} rwl, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_followupreminder_agent b/apparmor.d/groups/akonadi/akonadi_followupreminder_agent index 805d79ab8..220161832 100644 --- a/apparmor.d/groups/akonadi/akonadi_followupreminder_agent +++ b/apparmor.d/groups/akonadi/akonadi_followupreminder_agent @@ -38,8 +38,6 @@ profile akonadi_followupreminder_agent @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_ical_resource b/apparmor.d/groups/akonadi/akonadi_ical_resource index 7c1b4ea61..12414ece7 100644 --- a/apparmor.d/groups/akonadi/akonadi_ical_resource +++ b/apparmor.d/groups/akonadi/akonadi_ical_resource @@ -31,8 +31,6 @@ profile akonadi_ical_resource @{exec_path} { owner @{user_config_dirs}/kwinrc r, owner @{user_share_dirs}/apps/korganizer/{,**} rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_indexing_agent b/apparmor.d/groups/akonadi/akonadi_indexing_agent index 0bffc97ff..1c59bc78d 100644 --- a/apparmor.d/groups/akonadi/akonadi_indexing_agent +++ b/apparmor.d/groups/akonadi/akonadi_indexing_agent @@ -45,8 +45,6 @@ profile akonadi_indexing_agent @{exec_path} { owner @{user_share_dirs}/akonadi/ rw, owner @{user_share_dirs}/akonadi/** rwlk -> @{user_share_dirs}/akonadi/**, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_maildir_resource b/apparmor.d/groups/akonadi/akonadi_maildir_resource index fa44749df..55d0ce2b0 100644 --- a/apparmor.d/groups/akonadi/akonadi_maildir_resource +++ b/apparmor.d/groups/akonadi/akonadi_maildir_resource @@ -39,8 +39,6 @@ profile akonadi_maildir_resource @{exec_path} { owner @{user_share_dirs}/akonadi/{,**} rwk, owner @{user_share_dirs}/local-mail*/{,**} rw, - @{PROC}/sys/kernel/core_pattern rw, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_maildispatcher_agent b/apparmor.d/groups/akonadi/akonadi_maildispatcher_agent index 35839f63c..9030af7b5 100644 --- a/apparmor.d/groups/akonadi/akonadi_maildispatcher_agent +++ b/apparmor.d/groups/akonadi/akonadi_maildispatcher_agent @@ -50,8 +50,6 @@ profile akonadi_maildispatcher_agent @{exec_path} { owner @{user_share_dirs}/akonadi/file_db_data/{,**} r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_mailfilter_agent b/apparmor.d/groups/akonadi/akonadi_mailfilter_agent index 80594c6bd..d0d666b31 100644 --- a/apparmor.d/groups/akonadi/akonadi_mailfilter_agent +++ b/apparmor.d/groups/akonadi/akonadi_mailfilter_agent @@ -56,8 +56,6 @@ profile akonadi_mailfilter_agent @{exec_path} { owner @{user_share_dirs}/akonadi/file_db_data/{,**} rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_mailmerge_agent b/apparmor.d/groups/akonadi/akonadi_mailmerge_agent index fa663481a..510bcb1fb 100644 --- a/apparmor.d/groups/akonadi/akonadi_mailmerge_agent +++ b/apparmor.d/groups/akonadi/akonadi_mailmerge_agent @@ -39,8 +39,6 @@ profile akonadi_mailmerge_agent @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_migration_agent b/apparmor.d/groups/akonadi/akonadi_migration_agent index 5ad12003c..9a0478320 100644 --- a/apparmor.d/groups/akonadi/akonadi_migration_agent +++ b/apparmor.d/groups/akonadi/akonadi_migration_agent @@ -36,8 +36,6 @@ profile akonadi_migration_agent @{exec_path} { owner @{user_share_dirs}/akonadi_migration_agent/{,**} rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_newmailnotifier_agent b/apparmor.d/groups/akonadi/akonadi_newmailnotifier_agent index ffd40e8de..d07dcedbf 100644 --- a/apparmor.d/groups/akonadi/akonadi_newmailnotifier_agent +++ b/apparmor.d/groups/akonadi/akonadi_newmailnotifier_agent @@ -33,8 +33,6 @@ profile akonadi_newmailnotifier_agent @{exec_path} { owner @{user_config_dirs}/kmail2rc r, owner @{user_config_dirs}/specialmailcollectionsrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_notes_agent b/apparmor.d/groups/akonadi/akonadi_notes_agent index ee08560e3..56eb53c25 100644 --- a/apparmor.d/groups/akonadi/akonadi_notes_agent +++ b/apparmor.d/groups/akonadi/akonadi_notes_agent @@ -39,8 +39,6 @@ profile akonadi_notes_agent @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_sendlater_agent b/apparmor.d/groups/akonadi/akonadi_sendlater_agent index 945066cb8..104b3ec42 100644 --- a/apparmor.d/groups/akonadi/akonadi_sendlater_agent +++ b/apparmor.d/groups/akonadi/akonadi_sendlater_agent @@ -40,8 +40,6 @@ profile akonadi_sendlater_agent @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/akonadi/akonadi_unifiedmailbox_agent b/apparmor.d/groups/akonadi/akonadi_unifiedmailbox_agent index fcbf68d07..22f53cb04 100644 --- a/apparmor.d/groups/akonadi/akonadi_unifiedmailbox_agent +++ b/apparmor.d/groups/akonadi/akonadi_unifiedmailbox_agent @@ -34,8 +34,6 @@ profile akonadi_unifiedmailbox_agent @{exec_path} { owner @{user_config_dirs}/kdeglobals r, owner @{user_config_dirs}/kwinrc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/apps/telegram-desktop b/apparmor.d/groups/apps/telegram-desktop index add8fa0d2..68543770a 100644 --- a/apparmor.d/groups/apps/telegram-desktop +++ b/apparmor.d/groups/apps/telegram-desktop @@ -45,7 +45,6 @@ profile telegram-desktop @{exec_path} { owner @{run}/user/@{uid}/@{hex}-* rwk, owner /dev/shm/#@{int} rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/fd/ r, owner @{PROC}/@{pid}/mountinfo r, diff --git a/apparmor.d/groups/browsers/firefox-kmozillahelper b/apparmor.d/groups/browsers/firefox-kmozillahelper index a47bef7c5..cf299b489 100644 --- a/apparmor.d/groups/browsers/firefox-kmozillahelper +++ b/apparmor.d/groups/browsers/firefox-kmozillahelper @@ -55,7 +55,6 @@ profile firefox-kmozillahelper @{exec_path} { @{run}/udev/data/c189:@{int} r, # for /dev/bus/usb/** - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, /dev/tty r, diff --git a/apparmor.d/groups/freedesktop/polkit-kde-authentication-agent b/apparmor.d/groups/freedesktop/polkit-kde-authentication-agent index 164d40ab4..abd15224c 100644 --- a/apparmor.d/groups/freedesktop/polkit-kde-authentication-agent +++ b/apparmor.d/groups/freedesktop/polkit-kde-authentication-agent @@ -53,7 +53,6 @@ profile polkit-kde-authentication-agent @{exec_path} flags=(attach_disconnected, @{PROC}/@{pid}/cgroup r, @{PROC}/@{pid}/cmdline r, @{PROC}/@{pid}/fd/ r, - @{PROC}/sys/kernel/core_pattern r, include if exists } diff --git a/apparmor.d/groups/freedesktop/xdg-desktop-portal-kde b/apparmor.d/groups/freedesktop/xdg-desktop-portal-kde index c724c0aad..22c944a87 100644 --- a/apparmor.d/groups/freedesktop/xdg-desktop-portal-kde +++ b/apparmor.d/groups/freedesktop/xdg-desktop-portal-kde @@ -38,8 +38,6 @@ profile xdg-desktop-portal-kde @{exec_path} { owner @{run}/user/@{uid}/xdg-desktop-portal-kde@{rand6}.*.socket rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/DiscoverNotifier b/apparmor.d/groups/kde/DiscoverNotifier index b7fc61d2e..3156f1aa7 100644 --- a/apparmor.d/groups/kde/DiscoverNotifier +++ b/apparmor.d/groups/kde/DiscoverNotifier @@ -55,8 +55,6 @@ profile DiscoverNotifier @{exec_path} { owner @{tmp}/ostree-gpg-*/ rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, profile gpg { diff --git a/apparmor.d/groups/kde/baloo b/apparmor.d/groups/kde/baloo index 88476e81c..fe18f834f 100644 --- a/apparmor.d/groups/kde/baloo +++ b/apparmor.d/groups/kde/baloo @@ -42,7 +42,6 @@ profile baloo @{exec_path} { owner @{user_share_dirs}/baloo/{,**} rwk, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mounts r, owner @{PROC}/@{pid}/mountinfo r, diff --git a/apparmor.d/groups/kde/baloorunner b/apparmor.d/groups/kde/baloorunner index b92bcd005..64d22df67 100644 --- a/apparmor.d/groups/kde/baloorunner +++ b/apparmor.d/groups/kde/baloorunner @@ -61,8 +61,6 @@ profile baloorunner @{exec_path} { @{sys}/class/*/ r, @{sys}/devices/**/uevent r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/dolphin b/apparmor.d/groups/kde/dolphin index b22386b52..3d03db73f 100644 --- a/apparmor.d/groups/kde/dolphin +++ b/apparmor.d/groups/kde/dolphin @@ -86,7 +86,6 @@ profile dolphin @{exec_path} { owner @{run}/user/@{uid}/dolphin@{rand6}.@{int}.kioworker.socket rwl -> @{run}/user/@{uid}/#@{int}, owner @{run}/user/@{uid}/#@{int} rw, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/groups/kde/kaccess b/apparmor.d/groups/kde/kaccess index 53bc4cd69..170144b8a 100644 --- a/apparmor.d/groups/kde/kaccess +++ b/apparmor.d/groups/kde/kaccess @@ -26,8 +26,6 @@ profile kaccess @{exec_path} { owner @{user_share_dirs}/mime/generic-icons r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/kactivitymanagerd b/apparmor.d/groups/kde/kactivitymanagerd index 23ae41a5c..f12504d70 100644 --- a/apparmor.d/groups/kde/kactivitymanagerd +++ b/apparmor.d/groups/kde/kactivitymanagerd @@ -49,7 +49,6 @@ profile kactivitymanagerd @{exec_path} { owner @{run}/user/@{uid}/#@{int} rw, owner @{run}/user/@{uid}/*@{rand6}.*.socket rwl -> @{run}/user/@{uid}/#@{int}, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/groups/kde/kalendarac b/apparmor.d/groups/kde/kalendarac index fc1cb49f4..453ac9124 100644 --- a/apparmor.d/groups/kde/kalendarac +++ b/apparmor.d/groups/kde/kalendarac @@ -36,8 +36,6 @@ profile kalendarac @{exec_path} { owner @{user_config_dirs}/kalendaracrc.lock rwk, owner @{user_config_dirs}/kmail2rc r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/kcminit b/apparmor.d/groups/kde/kcminit index bec3e4456..1b14791ac 100644 --- a/apparmor.d/groups/kde/kcminit +++ b/apparmor.d/groups/kde/kcminit @@ -40,7 +40,6 @@ profile kcminit @{exec_path} { @{run}/user/@{uid}/xauth_@{rand6} rl, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/sys/kernel/random/boot_id r, /dev/tty r, diff --git a/apparmor.d/groups/kde/kde-powerdevil b/apparmor.d/groups/kde/kde-powerdevil index 9e596c410..287b495fe 100644 --- a/apparmor.d/groups/kde/kde-powerdevil +++ b/apparmor.d/groups/kde/kde-powerdevil @@ -71,7 +71,6 @@ profile kde-powerdevil @{exec_path} flags=(attach_disconnected mediate_deleted) @{PROC}/@{pid}/fd/ r, @{PROC}/@{pid}/mounts r, - @{PROC}/sys/kernel/core_pattern r, /dev/i2c-@{int} rwk, /dev/rfkill r, diff --git a/apparmor.d/groups/kde/kded b/apparmor.d/groups/kde/kded index cb719c10d..22c9ab4dd 100644 --- a/apparmor.d/groups/kde/kded +++ b/apparmor.d/groups/kde/kded @@ -157,7 +157,6 @@ profile kded @{exec_path} { @{PROC}/@{pids}/fdinfo/@{int} r, @{PROC}/@{pids}/fd/info/@{int} r, @{PROC}/sys/fs/inotify/max_user_{instances,watches} r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/groups/kde/kglobalacceld b/apparmor.d/groups/kde/kglobalacceld index 545e1e1b9..c0ea43b30 100644 --- a/apparmor.d/groups/kde/kglobalacceld +++ b/apparmor.d/groups/kde/kglobalacceld @@ -23,8 +23,6 @@ profile kglobalacceld @{exec_path} { owner @{user_config_dirs}/kglobalshortcutsrc* rwl, owner @{user_config_dirs}/kglobalshortcutsrc.lock rwk, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/kio_http_cache_cleaner b/apparmor.d/groups/kde/kio_http_cache_cleaner index 0f3c799ad..b96769fe4 100644 --- a/apparmor.d/groups/kde/kio_http_cache_cleaner +++ b/apparmor.d/groups/kde/kio_http_cache_cleaner @@ -21,7 +21,5 @@ profile kio_http_cache_cleaner @{exec_path} { owner @{run}/user/@{uid}/kio_http_cache_cleaner rw, - @{PROC}/sys/kernel/core_pattern r, - include if exists } \ No newline at end of file diff --git a/apparmor.d/groups/kde/kioworker b/apparmor.d/groups/kde/kioworker index 3e8d2a594..5e39ad775 100644 --- a/apparmor.d/groups/kde/kioworker +++ b/apparmor.d/groups/kde/kioworker @@ -92,7 +92,6 @@ profile kioworker @{exec_path} { owner @{run}/user/@{uid}/#@{int} rw, owner @{run}/user/@{uid}/kio_*.socket rwl -> @{run}/user/@{uid}/#@{int}, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/groups/kde/konsole b/apparmor.d/groups/kde/konsole index 45cb52cf0..d80f20b93 100644 --- a/apparmor.d/groups/kde/konsole +++ b/apparmor.d/groups/kde/konsole @@ -62,7 +62,6 @@ profile konsole @{exec_path} flags=(attach_disconnected,mediate_deleted) { owner @{tmp}/#@{int} rw, owner @{tmp}/konsole.@{rand6} rw, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/@{pid}/cmdline r, @{PROC}/@{pid}/stat r, diff --git a/apparmor.d/groups/kde/kscreenlocker_greet b/apparmor.d/groups/kde/kscreenlocker_greet index 8f2120233..6b6eab4b5 100644 --- a/apparmor.d/groups/kde/kscreenlocker_greet +++ b/apparmor.d/groups/kde/kscreenlocker_greet @@ -101,7 +101,6 @@ profile kscreenlocker_greet @{exec_path} { @{PROC}/@{pid}/fd/ r, @{PROC}/@{pid}/loginuid r, @{PROC}/@{pid}/mounts r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/loginuid r, /dev/tty r, diff --git a/apparmor.d/groups/kde/ksmserver b/apparmor.d/groups/kde/ksmserver index e5f898295..33724c835 100644 --- a/apparmor.d/groups/kde/ksmserver +++ b/apparmor.d/groups/kde/ksmserver @@ -67,8 +67,6 @@ profile ksmserver @{exec_path} flags=(attach_disconnected,mediate_deleted) { @{run}/systemd/inhibit/[0-9]*.ref rw, owner @{run}/user/@{uid}/KSMserver__[0-9] rw, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty r, include if exists diff --git a/apparmor.d/groups/kde/ksmserver-logout-greeter b/apparmor.d/groups/kde/ksmserver-logout-greeter index a13b08f3c..9c35530a6 100644 --- a/apparmor.d/groups/kde/ksmserver-logout-greeter +++ b/apparmor.d/groups/kde/ksmserver-logout-greeter @@ -53,7 +53,6 @@ profile ksmserver-logout-greeter @{exec_path} flags=(attach_disconnected) { owner @{run}/user/@{uid}/ r, @{PROC}/sys/dev/i915/perf_stream_paranoid r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/exe r, owner @{PROC}/@{pid}/status r, diff --git a/apparmor.d/groups/kde/ksplashqml b/apparmor.d/groups/kde/ksplashqml index 59d90b35b..80d91048e 100644 --- a/apparmor.d/groups/kde/ksplashqml +++ b/apparmor.d/groups/kde/ksplashqml @@ -32,7 +32,5 @@ profile ksplashqml @{exec_path} { owner @{user_config_dirs}/ksplashrc r, owner @{user_config_dirs}/plasmarc r, - @{PROC}/sys/kernel/core_pattern r, - include if exists } diff --git a/apparmor.d/groups/kde/kwalletd b/apparmor.d/groups/kde/kwalletd index 5aa42fb38..9d255e683 100644 --- a/apparmor.d/groups/kde/kwalletd +++ b/apparmor.d/groups/kde/kwalletd @@ -43,7 +43,6 @@ profile kwalletd @{exec_path} { owner @{tmp}/kwalletd5.* rw, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/fd/ r, diff --git a/apparmor.d/groups/kde/kwalletmanager b/apparmor.d/groups/kde/kwalletmanager index 90e8dbf2b..8c99ca25d 100644 --- a/apparmor.d/groups/kde/kwalletmanager +++ b/apparmor.d/groups/kde/kwalletmanager @@ -43,7 +43,6 @@ profile kwalletmanager @{exec_path} { @{PROC}/@{pid}/mountinfo r, @{PROC}/@{pid}/mounts r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/cmdline r, /dev/shm/ r, diff --git a/apparmor.d/groups/kde/kwin_wayland b/apparmor.d/groups/kde/kwin_wayland index 3e62ed175..0c682e2a3 100644 --- a/apparmor.d/groups/kde/kwin_wayland +++ b/apparmor.d/groups/kde/kwin_wayland @@ -126,7 +126,6 @@ profile kwin_wayland @{exec_path} flags=(attach_disconnected mediate_deleted) { @{run}/udev/data/c226:@{int} r, # for /dev/dri/card* @{PROC}/@{pid}/task/@{tid}/comm rw, - @{PROC}/sys/kernel/core_pattern r, /dev/input/event@{int} rw, /dev/tty r, diff --git a/apparmor.d/groups/kde/kwin_x11 b/apparmor.d/groups/kde/kwin_x11 index cd43b074c..7713d4945 100644 --- a/apparmor.d/groups/kde/kwin_x11 +++ b/apparmor.d/groups/kde/kwin_x11 @@ -64,8 +64,6 @@ profile kwin_x11 @{exec_path} { @{sys}/devices/system/node/ r, @{sys}/devices/system/node/node@{int}/meminfo r, - @{PROC}/sys/kernel/core_pattern r, - /dev/tty rw, include if exists diff --git a/apparmor.d/groups/kde/okular b/apparmor.d/groups/kde/okular index 71a982ca5..4d8e8a9b9 100644 --- a/apparmor.d/groups/kde/okular +++ b/apparmor.d/groups/kde/okular @@ -48,8 +48,6 @@ profile okular @{exec_path} { owner @{tmp}/#@{int} rw, owner @{tmp}/okular_@{rand6}.ps rwl -> /tmp/#@{int}, - @{PROC}/sys/kernel/core_pattern r, - profile gpg { include diff --git a/apparmor.d/groups/kde/plasma-browser-integration-host b/apparmor.d/groups/kde/plasma-browser-integration-host index 93b11c812..18d09bf79 100644 --- a/apparmor.d/groups/kde/plasma-browser-integration-host +++ b/apparmor.d/groups/kde/plasma-browser-integration-host @@ -37,7 +37,6 @@ profile plasma-browser-integration-host @{exec_path} { owner @{user_share_dirs}/kservices{5,6}/ r, owner @{user_share_dirs}/kservices{5,6}/ServiceMenus/ r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/stat r, diff --git a/apparmor.d/groups/kde/plasma-discover b/apparmor.d/groups/kde/plasma-discover index 6b8269b46..11cb7206e 100644 --- a/apparmor.d/groups/kde/plasma-discover +++ b/apparmor.d/groups/kde/plasma-discover @@ -95,7 +95,6 @@ profile plasma-discover @{exec_path} { owner @{run}/user/@{uid}/#@{int} rw, owner @{run}/user/@{uid}/discover@{rand6}.* rwl -> @{run}/user/@{uid}/#@{int}, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mountinfo r, /dev/tty r, diff --git a/apparmor.d/groups/kde/plasma_session b/apparmor.d/groups/kde/plasma_session index 0041d753f..d67966678 100644 --- a/apparmor.d/groups/kde/plasma_session +++ b/apparmor.d/groups/kde/plasma_session @@ -45,7 +45,5 @@ profile plasma_session @{exec_path} { owner @{user_config_dirs}/kdedefaults/ksplashrc r, owner @{user_config_dirs}/plasma-welcomerc r, - @{PROC}/sys/kernel/core_pattern r, - include if exists } \ No newline at end of file diff --git a/apparmor.d/groups/kde/plasmashell b/apparmor.d/groups/kde/plasmashell index f3456eec4..3c7b4eed8 100644 --- a/apparmor.d/groups/kde/plasmashell +++ b/apparmor.d/groups/kde/plasmashell @@ -192,7 +192,6 @@ profile plasmashell @{exec_path} flags=(mediate_deleted) { @{PROC}/cmdline r, @{PROC}/diskstats r, @{PROC}/loadavg r, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/uptime r, @{PROC}/vmstat r, owner @{PROC}/@{pid}/{cgroup,cmdline,stat,statm} r, diff --git a/apparmor.d/groups/kde/sddm b/apparmor.d/groups/kde/sddm index 20fec7b18..b93d46e9d 100644 --- a/apparmor.d/groups/kde/sddm +++ b/apparmor.d/groups/kde/sddm @@ -188,7 +188,6 @@ profile sddm @{exec_path} flags=(attach_disconnected,mediate_deleted) { @{PROC}/uptime r, @{PROC}/@{pids}/cmdline r, @{PROC}/@{pids}/stat r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/loginuid rw, owner @{PROC}/@{pid}/mounts r, owner @{PROC}/@{pid}/uid_map r, diff --git a/apparmor.d/groups/kde/sddm-greeter b/apparmor.d/groups/kde/sddm-greeter index eb8943137..305430f1f 100644 --- a/apparmor.d/groups/kde/sddm-greeter +++ b/apparmor.d/groups/kde/sddm-greeter @@ -68,7 +68,6 @@ profile sddm-greeter @{exec_path} { owner @{run}/sddm/{,*} rw, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/groups/kde/startplasma b/apparmor.d/groups/kde/startplasma index 1010c0a43..bcfa8d209 100644 --- a/apparmor.d/groups/kde/startplasma +++ b/apparmor.d/groups/kde/startplasma @@ -77,7 +77,6 @@ profile startplasma @{exec_path} { owner @{run}/user/@{uid}/ r, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/maps r, diff --git a/apparmor.d/groups/kde/systemsettings b/apparmor.d/groups/kde/systemsettings index 1af32ce81..d3ad9dccd 100644 --- a/apparmor.d/groups/kde/systemsettings +++ b/apparmor.d/groups/kde/systemsettings @@ -74,7 +74,6 @@ profile systemsettings @{exec_path} { @{sys}/bus/cpu/devices/ r, @{sys}/class/ r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mounts r, /dev/tty r, diff --git a/apparmor.d/groups/ubuntu/apport b/apparmor.d/groups/ubuntu/apport index eba45da06..f24a36275 100644 --- a/apparmor.d/groups/ubuntu/apport +++ b/apparmor.d/groups/ubuntu/apport @@ -46,7 +46,6 @@ profile apport @{exec_path} flags=(attach_disconnected) { @{PROC}/@{pid}/environ r, @{PROC}/@{pid}/stat r, @{PROC}/sys/fs/suid_dumpable w, - @{PROC}/sys/kernel/core_pattern r, @{PROC}/sys/kernel/core_pattern w, @{PROC}/sys/kernel/core_pipe_limit w, owner @{PROC}/@{pid}/attr/current r, diff --git a/apparmor.d/profiles-a-f/birdtray b/apparmor.d/profiles-a-f/birdtray index 972ee380d..93eb3d572 100644 --- a/apparmor.d/profiles-a-f/birdtray +++ b/apparmor.d/profiles-a-f/birdtray @@ -49,7 +49,6 @@ profile birdtray @{exec_path} { /dev/shm/#@{int} rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-a-f/flameshot b/apparmor.d/profiles-a-f/flameshot index 666245156..4d5c83fa9 100644 --- a/apparmor.d/profiles-a-f/flameshot +++ b/apparmor.d/profiles-a-f/flameshot @@ -51,7 +51,6 @@ profile flameshot @{exec_path} { owner @{tmp}/.@{rand8}/** rw, owner /dev/shm/#@{int} rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/fd/ r, owner @{PROC}/@{pid}/mountinfo r, diff --git a/apparmor.d/profiles-g-l/groups b/apparmor.d/profiles-g-l/groups index 625632e73..2affa7562 100644 --- a/apparmor.d/profiles-g-l/groups +++ b/apparmor.d/profiles-g-l/groups @@ -15,8 +15,6 @@ profile groups @{exec_path} { @{exec_path} mr, - @{PROC}/sys/kernel/random/boot_id r, - /dev/tty@{int} rw, include if exists diff --git a/apparmor.d/profiles-g-l/kanyremote b/apparmor.d/profiles-g-l/kanyremote index fb11c31c9..8f0ba584b 100644 --- a/apparmor.d/profiles-g-l/kanyremote +++ b/apparmor.d/profiles-g-l/kanyremote @@ -65,7 +65,6 @@ profile kanyremote @{exec_path} { owner /dev/shm/#@{int} rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, profile killall { diff --git a/apparmor.d/profiles-g-l/kodi b/apparmor.d/profiles-g-l/kodi index 55beb1b6a..87624f946 100644 --- a/apparmor.d/profiles-g-l/kodi +++ b/apparmor.d/profiles-g-l/kodi @@ -61,7 +61,6 @@ profile kodi @{exec_path} { @{PROC}/@{pid}/net/dev r, @{PROC}/@{pid}/net/route r, - @{PROC}/sys/kernel/core_pattern r, owner @{PROC}/@{pid}/mounts r, owner @{PROC}/@{pid}/mountinfo r, diff --git a/apparmor.d/profiles-m-r/megasync b/apparmor.d/profiles-m-r/megasync index 8f30c0c83..bf26a1aa8 100644 --- a/apparmor.d/profiles-m-r/megasync +++ b/apparmor.d/profiles-m-r/megasync @@ -51,7 +51,6 @@ profile megasync @{exec_path} { owner @{user_sync_dirs}/ r, owner @{user_sync_dirs}/** rwl -> @{user_sync_dirs}/**, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/minitube b/apparmor.d/profiles-m-r/minitube index e8e07ef43..3eecbb2bb 100644 --- a/apparmor.d/profiles-m-r/minitube +++ b/apparmor.d/profiles-m-r/minitube @@ -64,8 +64,6 @@ profile minitube @{exec_path} { # owner @{tmp}/#@{int} mrw, # owner @{tmp}/.glvnd* mrw, - @{PROC}/sys/kernel/core_pattern r, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, /dev/shm/#@{int} rw, diff --git a/apparmor.d/profiles-m-r/psi b/apparmor.d/profiles-m-r/psi index 84ae5b1b2..a0765eb7e 100644 --- a/apparmor.d/profiles-m-r/psi +++ b/apparmor.d/profiles-m-r/psi @@ -61,7 +61,6 @@ profile psi @{exec_path} { @{run}/systemd/inhibit/[0-9]*.ref rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/psi-plus b/apparmor.d/profiles-m-r/psi-plus index e1f78a45b..aaead522e 100644 --- a/apparmor.d/profiles-m-r/psi-plus +++ b/apparmor.d/profiles-m-r/psi-plus @@ -61,7 +61,6 @@ profile psi-plus @{exec_path} { @{run}/systemd/inhibit/[0-9]*.ref rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/qbittorrent-nox b/apparmor.d/profiles-m-r/qbittorrent-nox index cc8edfd64..cd4015707 100644 --- a/apparmor.d/profiles-m-r/qbittorrent-nox +++ b/apparmor.d/profiles-m-r/qbittorrent-nox @@ -46,7 +46,6 @@ profile qbittorrent-nox @{exec_path} { owner @{tmp}/qtsingleapp-qBitto-* rw, owner @{tmp}/qtsingleapp-qBitto-*-lockfile rwk, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/qnapi b/apparmor.d/profiles-m-r/qnapi index 712750a33..7075a0a49 100644 --- a/apparmor.d/profiles-m-r/qnapi +++ b/apparmor.d/profiles-m-r/qnapi @@ -64,7 +64,6 @@ profile qnapi @{exec_path} { owner @{tmp}/QNapi.@{int}.tmp.* rwl -> /tmp/#@{int}, owner @{tmp}/QNapi.@{int} rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/qpdfview b/apparmor.d/profiles-m-r/qpdfview index 2ced93511..4ce205c27 100644 --- a/apparmor.d/profiles-m-r/qpdfview +++ b/apparmor.d/profiles-m-r/qpdfview @@ -54,7 +54,6 @@ profile qpdfview @{exec_path} { owner @{tmp}/#@{int} rw, owner @{tmp}/qpdfview.*.pdf rwl -> /tmp/#@{int}, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/mountinfo r, owner @{PROC}/@{pid}/mounts r, diff --git a/apparmor.d/profiles-m-r/qt5ct b/apparmor.d/profiles-m-r/qt5ct index 3d4d73bb7..58bd6948e 100644 --- a/apparmor.d/profiles-m-r/qt5ct +++ b/apparmor.d/profiles-m-r/qt5ct @@ -33,7 +33,6 @@ profile qt5ct @{exec_path} { owner @{user_cache_dirs}/ rw, owner @{user_cache_dirs}/icon-cache.kcache rw, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, /dev/shm/#@{int} rw, diff --git a/apparmor.d/profiles-m-r/qtox b/apparmor.d/profiles-m-r/qtox index a60136402..fd9e0748d 100644 --- a/apparmor.d/profiles-m-r/qtox +++ b/apparmor.d/profiles-m-r/qtox @@ -50,7 +50,6 @@ profile qtox @{exec_path} { owner @{user_share_dirs}/qTox/** rw, owner @{PROC}/@{pid}/cmdline r, - @{PROC}/sys/kernel/core_pattern r, # for KCrash::initialize() owner @{tmp}/qipc_{systemsem,sharedmemory}_*@{hex} rw, diff --git a/apparmor.d/profiles-s-z/strawberry b/apparmor.d/profiles-s-z/strawberry index efb326115..39c68f5ed 100644 --- a/apparmor.d/profiles-s-z/strawberry +++ b/apparmor.d/profiles-s-z/strawberry @@ -72,7 +72,6 @@ profile strawberry @{exec_path} { @{run}/mount/utab r, - @{PROC}/sys/kernel/random/boot_id r, owner @{PROC}/@{pid}/cmdline r, owner @{PROC}/@{pid}/fd/ r, owner @{PROC}/@{pid}/mountinfo r, diff --git a/apparmor.d/profiles-s-z/usbguard-applet-qt b/apparmor.d/profiles-s-z/usbguard-applet-qt index 6737abc6e..a266575ee 100644 --- a/apparmor.d/profiles-s-z/usbguard-applet-qt +++ b/apparmor.d/profiles-s-z/usbguard-applet-qt @@ -36,7 +36,6 @@ profile usbguard-applet-qt @{exec_path} { owner @{run}/user/@{uid}/sni-qt_usbguard-applet-qt_@{int}-[a-zA-Z0-9]*/{,**} rw, owner @{PROC}/@{pid}/cmdline r, - @{PROC}/sys/kernel/core_pattern r, /usr/share/hwdata/pnp.ids r,