felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update apparmor profiles

Browse source
This commit is contained in:
Mikhail Morfikov 2021-05-26 10:49:17 +02:00 committed by Alexandre Pujol
parent 1ab54c1ed1
commit e085014238
No known key found for this signature in database
GPG key ID: C5469996F0DF68EC
37 changed files with 447 additions and 56 deletions
Download patch file Download diff file Expand all files Collapse all files

9
apparmor.d/groups/apt/dpkg-architecture
View file

@ -12,16 +12,21 @@ profile dpkg-architecture @{exec_path} {
include <abstractions/consoles>
include <abstractions/perl>
capability dac_read_search,
@{exec_path} r,
/usr/bin/perl r,
/{usr/,}bin/{,@{multiarch}-}gcc-[0-9]* rix,
/{usr/,}lib/llvm-[0-9]*/bin/clang rix,
/{usr/,}bin/ccache rCx -> ccache,
/{usr/,}bin/dpkg rPx -> child-dpkg,
/usr/share/dpkg/** r,
/etc/debian_version r,
# file_inherit
owner /tmp/* rw,
@ -31,10 +36,14 @@ profile dpkg-architecture @{exec_path} {
/{usr/,}bin/ccache mr,
/{usr/,}lib/llvm-[0-9]*/bin/clang rix,
/{usr/,}bin/{,@{multiarch}-}gcc-[0-9]* rix,
/{usr/,}bin/{,@{multiarch}-}g++-[0-9]* rix,
/media/ccache/*/** rw,
/etc/debian_version r,
}
include if exists <local/dpkg-architecture>