From 701bb4ce0e9a945290dcede9adc36f72de9cc699 Mon Sep 17 00:00:00 2001
From: doublez13 <zakraise@eng.utah.edu>
Date: Thu, 18 Sep 2025 08:21:38 -0600
Subject: [PATCH 1/2] Create profile for tickrs

---
 apparmor.d/profiles-s-z/tickrs | 32 ++++++++++++++++++++++++++++++++
 1 file changed, 32 insertions(+)
 create mode 100644 apparmor.d/profiles-s-z/tickrs

diff --git a/apparmor.d/profiles-s-z/tickrs b/apparmor.d/profiles-s-z/tickrs
new file mode 100644
index 000000000..9a4f7cd69
--- /dev/null
+++ b/apparmor.d/profiles-s-z/tickrs
@@ -0,0 +1,32 @@
+# apparmor.d - Full set of apparmor profiles
+# Copyright (C) 2025 Zane Zakraisek <zz@eng.utah.edu>
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/4.0>,
+
+include <tunables/global>
+
+@{exec_path} = @{bin}/tickrs
+profile tickrs @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/consoles>
+  include <abstractions/nameservice-strict>
+  include <abstractions/ssl_certs>
+
+  network inet dgram,
+  network inet6 dgram,
+  network inet stream,
+  network inet6 stream,
+  network netlink raw,
+
+  @{exec_path} mr,
+
+  owner @{HOME}/.config/tickrs/{,**}  rw,
+
+  @{sys}/fs/cgroup/**/cpu.max         r,
+  owner @{PROC}/@{pid}/cgroup         r,
+
+  include if exists <local/tickrs>
+}
+
+# vim:syntax=apparmor

From 74b1f7e9386562a3ba2e3c590a572e83d668f74c Mon Sep 17 00:00:00 2001
From: doublez13 <zakraise@eng.utah.edu>
Date: Thu, 18 Sep 2025 08:33:32 -0600
Subject: [PATCH 2/2] tickrs: make the linter happy

---
 apparmor.d/profiles-s-z/tickrs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apparmor.d/profiles-s-z/tickrs b/apparmor.d/profiles-s-z/tickrs
index 9a4f7cd69..131e1102b 100644
--- a/apparmor.d/profiles-s-z/tickrs
+++ b/apparmor.d/profiles-s-z/tickrs
@@ -21,7 +21,7 @@ profile tickrs @{exec_path} {
 
   @{exec_path} mr,
 
-  owner @{HOME}/.config/tickrs/{,**}  rw,
+  owner @{user_config_dirs}/tickrs/{,**}  rw,
 
   @{sys}/fs/cgroup/**/cpu.max         r,
   owner @{PROC}/@{pid}/cgroup         r,