feat(profile): remove rule moved in the base or nameservice abstraction.

2024-06-08 00:32:01 +01:00 · 2024-06-08 00:32:01 +01:00 · 5c8dda1ced
commit 5c8dda1ced
parent 57508bd7ea
71 changed files with 0 additions and 102 deletions
--- a/apparmor.d/groups/kde/DiscoverNotifier
+++ b/apparmor.d/groups/kde/DiscoverNotifier
@ -55,8 +55,6 @@ profile DiscoverNotifier @{exec_path} {

  owner @{tmp}/ostree-gpg-*/ rw,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  profile gpg {
--- a/apparmor.d/groups/kde/baloo
+++ b/apparmor.d/groups/kde/baloo
@ -42,7 +42,6 @@ profile baloo @{exec_path} {

  owner @{user_share_dirs}/baloo/{,**} rwk,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mounts r,
  owner @{PROC}/@{pid}/mountinfo r,

--- a/apparmor.d/groups/kde/baloorunner
+++ b/apparmor.d/groups/kde/baloorunner
@ -61,8 +61,6 @@ profile baloorunner @{exec_path} {
  @{sys}/class/*/ r,
  @{sys}/devices/**/uevent r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  include if exists <local/baloorunner>
--- a/apparmor.d/groups/kde/dolphin
+++ b/apparmor.d/groups/kde/dolphin
@ -86,7 +86,6 @@ profile dolphin @{exec_path} {
  owner @{run}/user/@{uid}/dolphin@{rand6}.@{int}.kioworker.socket rwl -> @{run}/user/@{uid}/#@{int},
  owner @{run}/user/@{uid}/#@{int} rw,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mountinfo r,
  owner @{PROC}/@{pid}/mounts r,

--- a/apparmor.d/groups/kde/kaccess
+++ b/apparmor.d/groups/kde/kaccess
@ -26,8 +26,6 @@ profile kaccess @{exec_path} {

  owner @{user_share_dirs}/mime/generic-icons r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  include if exists <local/kaccess>
--- a/apparmor.d/groups/kde/kactivitymanagerd
+++ b/apparmor.d/groups/kde/kactivitymanagerd
@ -49,7 +49,6 @@ profile kactivitymanagerd @{exec_path} {
  owner @{run}/user/@{uid}/#@{int} rw,
  owner @{run}/user/@{uid}/*@{rand6}.*.socket rwl -> @{run}/user/@{uid}/#@{int},

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mountinfo r,
  owner @{PROC}/@{pid}/mounts r,

--- a/apparmor.d/groups/kde/kalendarac
+++ b/apparmor.d/groups/kde/kalendarac
@ -36,8 +36,6 @@ profile kalendarac @{exec_path} {
  owner @{user_config_dirs}/kalendaracrc.lock rwk,
  owner @{user_config_dirs}/kmail2rc r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  include if exists <local/kalendarac>
--- a/apparmor.d/groups/kde/kcminit
+++ b/apparmor.d/groups/kde/kcminit
@ -40,7 +40,6 @@ profile kcminit @{exec_path} {

  @{run}/user/@{uid}/xauth_@{rand6} rl,

-  @{PROC}/sys/kernel/core_pattern r,
  @{PROC}/sys/kernel/random/boot_id r,

  /dev/tty r,
--- a/apparmor.d/groups/kde/kde-powerdevil
+++ b/apparmor.d/groups/kde/kde-powerdevil
@ -71,7 +71,6 @@ profile kde-powerdevil @{exec_path} flags=(attach_disconnected mediate_deleted)

  @{PROC}/@{pid}/fd/ r,
  @{PROC}/@{pid}/mounts r,
-  @{PROC}/sys/kernel/core_pattern r,

  /dev/i2c-@{int} rwk,
  /dev/rfkill r,
--- a/apparmor.d/groups/kde/kded
+++ b/apparmor.d/groups/kde/kded
@ -157,7 +157,6 @@ profile kded @{exec_path} {
        @{PROC}/@{pids}/fdinfo/@{int} r,
        @{PROC}/@{pids}/fd/info/@{int} r,
        @{PROC}/sys/fs/inotify/max_user_{instances,watches} r,
-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mountinfo r,
  owner @{PROC}/@{pid}/mounts r,

--- a/apparmor.d/groups/kde/kglobalacceld
+++ b/apparmor.d/groups/kde/kglobalacceld
@ -23,8 +23,6 @@ profile kglobalacceld @{exec_path} {
  owner @{user_config_dirs}/kglobalshortcutsrc* rwl,
  owner @{user_config_dirs}/kglobalshortcutsrc.lock rwk,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  include if exists <local/kglobalacceld>
--- a/apparmor.d/groups/kde/kio_http_cache_cleaner
+++ b/apparmor.d/groups/kde/kio_http_cache_cleaner
@ -21,7 +21,5 @@ profile kio_http_cache_cleaner @{exec_path} {

  owner @{run}/user/@{uid}/kio_http_cache_cleaner rw,

-  @{PROC}/sys/kernel/core_pattern r,
-
  include if exists <local/kio_http_cache_cleaner>
 }
--- a/apparmor.d/groups/kde/kioworker
+++ b/apparmor.d/groups/kde/kioworker
@ -92,7 +92,6 @@ profile kioworker @{exec_path} {
  owner @{run}/user/@{uid}/#@{int} rw,
  owner @{run}/user/@{uid}/kio_*.socket rwl -> @{run}/user/@{uid}/#@{int},

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mountinfo r,
  owner @{PROC}/@{pid}/mounts r,

--- a/apparmor.d/groups/kde/konsole
+++ b/apparmor.d/groups/kde/konsole
@ -62,7 +62,6 @@ profile konsole @{exec_path} flags=(attach_disconnected,mediate_deleted) {
  owner @{tmp}/#@{int} rw,
  owner @{tmp}/konsole.@{rand6} rw,

-  @{PROC}/sys/kernel/core_pattern r,
  @{PROC}/@{pid}/cmdline r,
  @{PROC}/@{pid}/stat r,

--- a/apparmor.d/groups/kde/kscreenlocker_greet
+++ b/apparmor.d/groups/kde/kscreenlocker_greet
@ -101,7 +101,6 @@ profile kscreenlocker_greet @{exec_path} {
        @{PROC}/@{pid}/fd/ r,
        @{PROC}/@{pid}/loginuid r,
        @{PROC}/@{pid}/mounts r,
-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/loginuid r,

  /dev/tty r,
--- a/apparmor.d/groups/kde/ksmserver
+++ b/apparmor.d/groups/kde/ksmserver
@ -67,8 +67,6 @@ profile ksmserver @{exec_path} flags=(attach_disconnected,mediate_deleted) {
        @{run}/systemd/inhibit/[0-9]*.ref rw,
  owner @{run}/user/@{uid}/KSMserver__[0-9] rw,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty r,

  include if exists <local/ksmserver>
--- a/apparmor.d/groups/kde/ksmserver-logout-greeter
+++ b/apparmor.d/groups/kde/ksmserver-logout-greeter
@ -53,7 +53,6 @@ profile ksmserver-logout-greeter @{exec_path} flags=(attach_disconnected) {
  owner @{run}/user/@{uid}/ r,

        @{PROC}/sys/dev/i915/perf_stream_paranoid r,
-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/exe r,
  owner @{PROC}/@{pid}/status r,

--- a/apparmor.d/groups/kde/ksplashqml
+++ b/apparmor.d/groups/kde/ksplashqml
@ -32,7 +32,5 @@ profile ksplashqml @{exec_path} {
  owner @{user_config_dirs}/ksplashrc r,
  owner @{user_config_dirs}/plasmarc r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  include if exists <local/ksplashqml>
 }
--- a/apparmor.d/groups/kde/kwalletd
+++ b/apparmor.d/groups/kde/kwalletd
@ -43,7 +43,6 @@ profile kwalletd @{exec_path} {

  owner @{tmp}/kwalletd5.* rw,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/cmdline r,
  owner @{PROC}/@{pid}/fd/ r,

--- a/apparmor.d/groups/kde/kwalletmanager
+++ b/apparmor.d/groups/kde/kwalletmanager
@ -43,7 +43,6 @@ profile kwalletmanager @{exec_path} {

        @{PROC}/@{pid}/mountinfo r,
        @{PROC}/@{pid}/mounts r,
-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/cmdline r,

  /dev/shm/ r,
--- a/apparmor.d/groups/kde/kwin_wayland
+++ b/apparmor.d/groups/kde/kwin_wayland
@ -126,7 +126,6 @@ profile kwin_wayland @{exec_path} flags=(attach_disconnected mediate_deleted) {
  @{run}/udev/data/c226:@{int} r,         # for /dev/dri/card*

  @{PROC}/@{pid}/task/@{tid}/comm rw,
-  @{PROC}/sys/kernel/core_pattern r,

  /dev/input/event@{int} rw,
  /dev/tty r,
--- a/apparmor.d/groups/kde/kwin_x11
+++ b/apparmor.d/groups/kde/kwin_x11
@ -64,8 +64,6 @@ profile kwin_x11 @{exec_path} {
  @{sys}/devices/system/node/ r,
  @{sys}/devices/system/node/node@{int}/meminfo r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  /dev/tty rw,

  include if exists <local/kwin_x11>
--- a/apparmor.d/groups/kde/okular
+++ b/apparmor.d/groups/kde/okular
@ -48,8 +48,6 @@ profile okular @{exec_path} {
  owner @{tmp}/#@{int} rw,
  owner @{tmp}/okular_@{rand6}.ps rwl -> /tmp/#@{int},

-  @{PROC}/sys/kernel/core_pattern r,
-
  profile gpg {
    include <abstractions/base>

--- a/apparmor.d/groups/kde/plasma-browser-integration-host
+++ b/apparmor.d/groups/kde/plasma-browser-integration-host
@ -37,7 +37,6 @@ profile plasma-browser-integration-host @{exec_path} {
  owner @{user_share_dirs}/kservices{5,6}/ r,
  owner @{user_share_dirs}/kservices{5,6}/ServiceMenus/ r,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/cmdline r,
  owner @{PROC}/@{pid}/stat r,

--- a/apparmor.d/groups/kde/plasma-discover
+++ b/apparmor.d/groups/kde/plasma-discover
@ -95,7 +95,6 @@ profile plasma-discover @{exec_path} {
  owner @{run}/user/@{uid}/#@{int} rw,
  owner @{run}/user/@{uid}/discover@{rand6}.* rwl ->  @{run}/user/@{uid}/#@{int},

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mountinfo r,

  /dev/tty r,
--- a/apparmor.d/groups/kde/plasma_session
+++ b/apparmor.d/groups/kde/plasma_session
@ -45,7 +45,5 @@ profile plasma_session @{exec_path} {
  owner @{user_config_dirs}/kdedefaults/ksplashrc r,
  owner @{user_config_dirs}/plasma-welcomerc r,

-  @{PROC}/sys/kernel/core_pattern r,
-
  include if exists <local/plasma_session>
 }
--- a/apparmor.d/groups/kde/plasmashell
+++ b/apparmor.d/groups/kde/plasmashell
@ -192,7 +192,6 @@ profile plasmashell @{exec_path} flags=(mediate_deleted) {
        @{PROC}/cmdline r,
        @{PROC}/diskstats r,
        @{PROC}/loadavg r,
-        @{PROC}/sys/kernel/core_pattern r,
        @{PROC}/uptime r,
        @{PROC}/vmstat r,
  owner @{PROC}/@{pid}/{cgroup,cmdline,stat,statm} r,
--- a/apparmor.d/groups/kde/sddm
+++ b/apparmor.d/groups/kde/sddm
@ -188,7 +188,6 @@ profile sddm @{exec_path} flags=(attach_disconnected,mediate_deleted) {
        @{PROC}/uptime r,
        @{PROC}/@{pids}/cmdline r,
        @{PROC}/@{pids}/stat r,
-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/loginuid rw,
  owner @{PROC}/@{pid}/mounts r,
  owner @{PROC}/@{pid}/uid_map r,
--- a/apparmor.d/groups/kde/sddm-greeter
+++ b/apparmor.d/groups/kde/sddm-greeter
@ -68,7 +68,6 @@ profile sddm-greeter @{exec_path} {

  owner @{run}/sddm/{,*} rw,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/cmdline r,
  owner @{PROC}/@{pid}/mounts r,

--- a/apparmor.d/groups/kde/startplasma
+++ b/apparmor.d/groups/kde/startplasma
@ -77,7 +77,6 @@ profile startplasma @{exec_path} {

  owner @{run}/user/@{uid}/ r,

-        @{PROC}/sys/kernel/core_pattern r,
        @{PROC}/sys/kernel/random/boot_id r,
  owner @{PROC}/@{pid}/maps r,

--- a/apparmor.d/groups/kde/systemsettings
+++ b/apparmor.d/groups/kde/systemsettings
@ -74,7 +74,6 @@ profile systemsettings @{exec_path} {
  @{sys}/bus/cpu/devices/ r,
  @{sys}/class/ r,

-        @{PROC}/sys/kernel/core_pattern r,
  owner @{PROC}/@{pid}/mounts r,

  /dev/tty r,