From 771dd9b589e15c66038a28e1d469391f25a962bd Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Mon, 7 Jul 2025 00:22:26 +0200
Subject: [PATCH] feat(profile): add pidof

---
 apparmor.d/groups/procps/pidof      | 18 ++++++++++++++++++
 tests/integration/procps/pidof.bats | 19 +++++++++++++++++++
 2 files changed, 37 insertions(+)
 create mode 100644 apparmor.d/groups/procps/pidof
 create mode 100644 tests/integration/procps/pidof.bats

diff --git a/apparmor.d/groups/procps/pidof b/apparmor.d/groups/procps/pidof
new file mode 100644
index 000000000..3413eb6c3
--- /dev/null
+++ b/apparmor.d/groups/procps/pidof
@@ -0,0 +1,18 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2025 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/4.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/pidof
+profile pidof @{exec_path} {
+  include <abstractions/base>
+
+  @{exec_path} mr,
+
+  include if exists <local/pidof>
+}
+
+# vim:syntax=apparmor
diff --git a/tests/integration/procps/pidof.bats b/tests/integration/procps/pidof.bats
new file mode 100644
index 000000000..ec20cbe86
--- /dev/null
+++ b/tests/integration/procps/pidof.bats
@@ -0,0 +1,19 @@
+#!/usr/bin/env bats
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2024 Alexandre Pujol <alexandre@pujol.io>
+# SPDX-License-Identifier: GPL-2.0-only
+
+load ../common
+
+@test "pidof: List all process IDs with given name" {
+    pidof systemd
+    pidof bash
+}
+
+@test "pidof: List a single process ID with given name" {
+    pidof -s bash
+}
+
+@test "pidof: List process IDs including scripts with given name" {
+    pidof -x bash
+}