felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(profile): general update

Browse source
This commit is contained in:
Alexandre Pujol 2025-01-20 21:23:31 +01:00
parent e41c5f6055
commit 693259d8c1
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
22 changed files with 42 additions and 25 deletions
Download patch file Download diff file Expand all files Collapse all files

6
apparmor.d/profiles-m-r/mullvad-setup
View file

@ -13,9 +13,11 @@ profile mullvad-setup @{exec_path} {
@{exec_path} mr,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/session-@{word}.scope/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/app.slice/cpu.max r,
@{sys}/fs/cgroup/user.slice/user-@{uid}.slice/user@@{uid}.service/cpu.max r,
@{PROC}/@{pid}/mountinfo r,
owner @{PROC}/@{pid}/cgroup r,

8
apparmor.d/profiles-m-r/needrestart
View file

@ -20,9 +20,9 @@ profile needrestart @{exec_path} flags=(attach_disconnected) {
capability kill,
capability sys_ptrace,
ptrace (read),
ptrace read,
mqueue (r,getattr) type=posix /,
mqueue r type=posix /,
@{exec_path} mrix,
@ -43,6 +43,8 @@ profile needrestart @{exec_path} flags=(attach_disconnected) {
@{lib}/needrestart/* rPx,
/usr/share/debconf/frontend rix,
@{att}/@{lib}/python3.@{int}/** r,
/usr/share/needrestart/{,**} r,
/usr/share/unattended-upgrades/unattended-upgrade-shutdown r,
@ -60,6 +62,8 @@ profile needrestart @{exec_path} flags=(attach_disconnected) {
owner /var/lib/juju/agents/{,**} r,
owner /var/cache/debconf/{config,passwords,templates}.dat{,-new,-old} rwk,
/tmp/@{word10}/ rw,
owner @{run}/sshd.pid r,
@{PROC}/ r,