diff options
author | Julien Morvan <julien.morvan@outlook.com> | 2015-07-31 13:53:26 +0000 |
---|---|---|
committer | Julien Morvan <julien.morvan@outlook.com> | 2015-07-31 13:53:26 +0000 |
commit | 847e9575ed85eadb979bc416afec7cf898cf00d1 (patch) | |
tree | 4fa7f2f3d62a1dfbe14e160879a838a56ddd14ae | |
parent | 18d3aebbb66f453d5b57bb28dd284508bb938332 (diff) | |
download | gnunet-847e9575ed85eadb979bc416afec7cf898cf00d1.tar.gz gnunet-847e9575ed85eadb979bc416afec7cf898cf00d1.zip |
88 files changed, 991 insertions, 927 deletions
diff --git a/contrib/apparmor/usr.local.bin.gnunet-arm b/contrib/apparmor/gnunet-arm index 83f758238..d969f6af1 100644 --- a/contrib/apparmor/usr.local.bin.gnunet-arm +++ b/contrib/apparmor/gnunet-arm | |||
@@ -1,14 +1,15 @@ | |||
1 | #/usr/local/lib Last Modified: Fri Jul 3 14:48:33 2015 | 1 | #Last Modified: Fri Jul 3 14:48:33 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/bin/gnunet-arm { | 5 | profile @{GNUNET_PREFIX}/bin/gnunet-arm { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/local/bin/gnunet-arm mr, | 8 | @{GNUNET_PREFIX}/bin/gnunet-arm mr, |
8 | 9 | ||
9 | /usr/lib/gconv/gconv-modules r, | 10 | /usr/lib/gconv/gconv-modules r, |
10 | 11 | ||
11 | /usr/local/lib/libgnunetarm.so.* mr, | 12 | @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, |
12 | 13 | ||
13 | /dev/null ra, | 14 | /dev/null ra, |
14 | 15 | ||
@@ -18,7 +19,7 @@ | |||
18 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | 19 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, |
19 | 20 | ||
20 | #Gnunet service | 21 | #Gnunet service |
21 | /usr/local/lib/gnunet/libexec/gnunet-service-arm Px , | 22 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px , |
22 | 23 | ||
23 | /tmp/gnunet-*-runtime/ rw, | 24 | /tmp/gnunet-*-runtime/ rw, |
24 | /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, | 25 | /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, |
diff --git a/contrib/apparmor/gnunet-daemon-exit b/contrib/apparmor/gnunet-daemon-exit new file mode 100644 index 000000000..95f1c57d8 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-exit | |||
@@ -0,0 +1,24 @@ | |||
1 | # Last Modified: Mon Jul 27 15:57:50 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /usr/lib/ld-*.so r, | ||
9 | |||
10 | /usr/lib/locale/locale-archive r, | ||
11 | |||
12 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit mr, | ||
13 | |||
14 | #Gnunet librairies | ||
15 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, | ||
21 | |||
22 | /usr/share/locale/locale.alias r, | ||
23 | |||
24 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist b/contrib/apparmor/gnunet-daemon-hostlist index d9d32cb61..82afb3848 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist +++ b/contrib/apparmor/gnunet-daemon-hostlist | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Fri Jul 10 10:43:55 2015 | 1 | # Last Modified: Fri Jul 10 10:43:55 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /etc/gai.conf r, | 8 | /etc/gai.conf r, |
@@ -49,16 +50,16 @@ | |||
49 | 50 | ||
50 | /usr/lib/locale/locale-archive r, | 51 | /usr/lib/locale/locale-archive r, |
51 | 52 | ||
52 | /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist mr, | 53 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist mr, |
53 | 54 | ||
54 | #Gnunet librairies | 55 | #Gnunet librairies |
55 | /usr/local/lib/libgnunetats.so.* mr, | 56 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, |
56 | /usr/local/lib/libgnunetcore.so.* mr, | 57 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, |
57 | /usr/local/lib/libgnunethello.so.* mr, | 58 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, |
58 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | 59 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, |
59 | /usr/local/lib/libgnunetstatistics.so.* mr, | 60 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
60 | /usr/local/lib/libgnunettransport.so.* mr, | 61 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, |
61 | /usr/local/lib/libgnunetutil.so.* mr, | 62 | @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr, |
62 | 63 | ||
63 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | 64 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, |
64 | /usr/share/locale/locale.alias r, | 65 | /usr/share/locale/locale.alias r, |
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger b/contrib/apparmor/gnunet-daemon-latency-logger index a25852bf8..38053ffec 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger +++ b/contrib/apparmor/gnunet-daemon-latency-logger | |||
@@ -1,16 +1,17 @@ | |||
1 | # Last Modified: Mon Jul 27 16:25:08 2015 | 1 | # Last Modified: Mon Jul 27 16:25:08 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/lib/ld-*.so r, | 8 | /usr/lib/ld-*.so r, |
8 | /usr/lib/libpthread-*.so mr, | 9 | /usr/lib/libpthread-*.so mr, |
9 | /usr/lib/libsqlite3.so.* mr, | 10 | /usr/lib/libsqlite3.so.* mr, |
10 | /usr/lib/locale/locale-archive r, | 11 | /usr/lib/locale/locale-archive r, |
11 | /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger mr, | 12 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger mr, |
12 | /usr/local/lib/libgnunetats.so.* mr, | 13 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, |
13 | /usr/local/lib/libgnunethello.so.* mr, | 14 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, |
14 | /usr/share/locale/locale.alias r, | 15 | /usr/share/locale/locale.alias r, |
15 | 16 | ||
16 | } | 17 | } |
diff --git a/contrib/apparmor/gnunet-daemon-pt b/contrib/apparmor/gnunet-daemon-pt new file mode 100644 index 000000000..f14cf2922 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-pt | |||
@@ -0,0 +1,26 @@ | |||
1 | # Last Modified: Mon Jul 20 17:48:20 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Librairies | ||
9 | /usr/lib/ld-*.so r, | ||
10 | /usr/lib/libidn.so.* mr, | ||
11 | |||
12 | /usr/lib/locale/locale-archive r, | ||
13 | |||
14 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt mr, | ||
15 | |||
16 | #Gnunet librairies | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr, | ||
24 | |||
25 | /usr/share/locale/locale.alias r, | ||
26 | } | ||
diff --git a/contrib/apparmor/gnunet-daemon-regexprofiler b/contrib/apparmor/gnunet-daemon-regexprofiler new file mode 100644 index 000000000..eface26d1 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-regexprofiler | |||
@@ -0,0 +1,13 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr, | ||
9 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
10 | @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
12 | |||
13 | } | ||
diff --git a/contrib/apparmor/gnunet-daemon-testbed-blacklist b/contrib/apparmor/gnunet-daemon-testbed-blacklist new file mode 100644 index 000000000..9dcfe321b --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-testbed-blacklist | |||
@@ -0,0 +1,13 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr, | ||
9 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
10 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
11 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
12 | |||
13 | } | ||
diff --git a/contrib/apparmor/gnunet-daemon-testbed-underlay b/contrib/apparmor/gnunet-daemon-testbed-underlay new file mode 100644 index 000000000..f11dcbca9 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-testbed-underlay | |||
@@ -0,0 +1,23 @@ | |||
1 | # Last Modified: Mon Jul 27 16:37:03 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Librairies | ||
9 | /usr/lib/ld-*.so r, | ||
10 | /usr/lib/libpthread-*.so mr, | ||
11 | /usr/lib/libsqlite3.so.* mr, | ||
12 | |||
13 | /usr/lib/locale/locale-archive r, | ||
14 | |||
15 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr, | ||
16 | |||
17 | #Gnunet librairies | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
21 | |||
22 | /usr/share/locale/locale.alias r, | ||
23 | } | ||
diff --git a/contrib/apparmor/gnunet-daemon-topology b/contrib/apparmor/gnunet-daemon-topology new file mode 100644 index 000000000..b8b03082c --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-topology | |||
@@ -0,0 +1,27 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:12 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunetfriends.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, | ||
15 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
16 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
18 | |||
19 | /usr/lib/ld-*.so r, | ||
20 | |||
21 | /usr/lib//locale/locale-archive r, | ||
22 | |||
23 | /usr/lib/gconv/gconv-modules r, | ||
24 | |||
25 | /usr/share/locale/locale.alias r, | ||
26 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | ||
27 | } | ||
diff --git a/contrib/apparmor/gnunet-dns2gns b/contrib/apparmor/gnunet-dns2gns new file mode 100644 index 000000000..c860d56b0 --- /dev/null +++ b/contrib/apparmor/gnunet-dns2gns | |||
@@ -0,0 +1,26 @@ | |||
1 | # Last Modified: Tue Jul 21 16:45:05 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Librairies | ||
9 | /usr/lib/ld-*.so r, | ||
10 | /usr/lib/libidn.so.* mr, | ||
11 | |||
12 | /usr/lib/locale/locale-archive r, | ||
13 | |||
14 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns mr, | ||
15 | |||
16 | #Gnunet librairies | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
24 | |||
25 | /usr/share/locale/locale.alias r, | ||
26 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy b/contrib/apparmor/gnunet-gns-proxy index 62efa7744..5d24b3a5e 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy +++ b/contrib/apparmor/gnunet-gns-proxy | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 21 16:35:07 2015 | 1 | # Last Modified: Tue Jul 21 16:35:07 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-gns-proxy { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /etc/ssl/openssl.cnf r, | 8 | /etc/ssl/openssl.cnf r, |
@@ -36,13 +37,13 @@ | |||
36 | 37 | ||
37 | /usr/lib/locale/locale-archive r, | 38 | /usr/lib/locale/locale-archive r, |
38 | 39 | ||
39 | /usr/local/lib/gnunet/libexec/gnunet-gns-proxy mr, | 40 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy mr, |
40 | 41 | ||
41 | #Gnunet librairies | 42 | #Gnunet librairies |
42 | /usr/local/lib/libgnunetdnsparser.so.* mr, | 43 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, |
43 | /usr/local/lib/libgnunetgns.so.* mr, | 44 | @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, |
44 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | 45 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, |
45 | /usr/local/lib/libgnunetidentity.so.* mr, | 46 | @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, |
46 | 47 | ||
47 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | 48 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, |
48 | /usr/share/locale/locale.alias r, | 49 | /usr/share/locale/locale.alias r, |
diff --git a/contrib/apparmor/gnunet-helper-audio-playback b/contrib/apparmor/gnunet-helper-audio-playback new file mode 100644 index 000000000..b98b22b69 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-audio-playback | |||
@@ -0,0 +1,10 @@ | |||
1 | # Last Modified: Tue Jul 28 11:46:24 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | #include <abstractions/gnunet-libaudio> | ||
8 | |||
9 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback mr, | ||
10 | } | ||
diff --git a/contrib/apparmor/gnunet-helper-audio-record b/contrib/apparmor/gnunet-helper-audio-record new file mode 100644 index 000000000..f85b83d9f --- /dev/null +++ b/contrib/apparmor/gnunet-helper-audio-record | |||
@@ -0,0 +1,10 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | #include <abstractions/gnunet-libaudio> | ||
8 | |||
9 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record mr, | ||
10 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns b/contrib/apparmor/gnunet-helper-dns index 960cf09b5..b6a102585 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns +++ b/contrib/apparmor/gnunet-helper-dns | |||
@@ -1,9 +1,11 @@ | |||
1 | # Last Modified: Mon Jul 27 15:24:34 2015 | 1 | # Last Modified: Mon Jul 27 15:24:34 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
8 | #Capability | ||
7 | capability net_admin, | 9 | capability net_admin, |
8 | capability net_raw, | 10 | capability net_raw, |
9 | capability setuid, | 11 | capability setuid, |
@@ -25,11 +27,11 @@ | |||
25 | /usr/bin/sysctl rix, | 27 | /usr/bin/sysctl rix, |
26 | /usr/bin/xtables-multi rix, | 28 | /usr/bin/xtables-multi rix, |
27 | 29 | ||
30 | #Librairies | ||
28 | /usr/lib/iptables/libxt_MARK.so mr, | 31 | /usr/lib/iptables/libxt_MARK.so mr, |
29 | /usr/lib/iptables/libxt_owner.so mr, | 32 | /usr/lib/iptables/libxt_owner.so mr, |
30 | /usr/lib/iptables/libxt_standard.so mr, | 33 | /usr/lib/iptables/libxt_standard.so mr, |
31 | /usr/lib/iptables/libxt_udp.so mr, | 34 | /usr/lib/iptables/libxt_udp.so mr, |
32 | |||
33 | /usr/lib/ld-*.so r, | 35 | /usr/lib/ld-*.so r, |
34 | /usr/lib/libip4tc.so.* mr, | 36 | /usr/lib/libip4tc.so.* mr, |
35 | /usr/lib/libip6tc.so.* mr, | 37 | /usr/lib/libip6tc.so.* mr, |
@@ -39,5 +41,5 @@ | |||
39 | 41 | ||
40 | /usr/lib/locale/locale-archive r, | 42 | /usr/lib/locale/locale-archive r, |
41 | 43 | ||
42 | /usr/local/lib/gnunet/libexec/gnunet-helper-dns mr, | 44 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns mr, |
43 | } | 45 | } |
diff --git a/contrib/apparmor/gnunet-helper-exit b/contrib/apparmor/gnunet-helper-exit new file mode 100644 index 000000000..d185f5b80 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-exit | |||
@@ -0,0 +1,12 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | capability setuid, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish b/contrib/apparmor/gnunet-helper-fs-publish index ad0a142f7..ccf0cb513 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish +++ b/contrib/apparmor/gnunet-helper-fs-publish | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | 1 | # Last Modified: Tue Jul 28 11:42:58 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/lib/libbz2.so.* mr, | 8 | /usr/lib/libbz2.so.* mr, |
@@ -9,5 +10,5 @@ | |||
9 | /usr/lib/libpthread-*.so mr, | 10 | /usr/lib/libpthread-*.so mr, |
10 | /usr/lib/librt-*.so mr, | 11 | /usr/lib/librt-*.so mr, |
11 | 12 | ||
12 | /usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish mr, | 13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish mr, |
13 | } | 14 | } |
diff --git a/contrib/apparmor/gnunet-helper-nat-client b/contrib/apparmor/gnunet-helper-nat-client new file mode 100644 index 000000000..19a563878 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-nat-client | |||
@@ -0,0 +1,12 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | capability setuid, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/gnunet-helper-nat-server b/contrib/apparmor/gnunet-helper-nat-server new file mode 100644 index 000000000..594d2de7a --- /dev/null +++ b/contrib/apparmor/gnunet-helper-nat-server | |||
@@ -0,0 +1,12 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | capability setuid, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/gnunet-helper-testbed b/contrib/apparmor/gnunet-helper-testbed new file mode 100644 index 000000000..22ac13347 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-testbed | |||
@@ -0,0 +1,37 @@ | |||
1 | # Last Modified: Mon Jul 27 11:02:37 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /dev/null rw, | ||
9 | |||
10 | /etc/gai.conf r, | ||
11 | |||
12 | /usr/lib/ld-*.so r, | ||
13 | |||
14 | /usr/lib/locale/locale-archive r, | ||
15 | |||
16 | /usr/share/locale/locale.alias r, | ||
17 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | ||
18 | |||
19 | /usr/lib/gconv/gconv-modules r, | ||
20 | |||
21 | @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, | ||
22 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed mr, | ||
23 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm r, | ||
24 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px, | ||
25 | |||
26 | #Gnunet librairies | ||
27 | @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, | ||
28 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
29 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
30 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
31 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
32 | @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr, | ||
33 | @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr, | ||
34 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
35 | |||
36 | @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r, | ||
37 | } | ||
diff --git a/contrib/apparmor/gnunet-helper-transport-wlan b/contrib/apparmor/gnunet-helper-transport-wlan new file mode 100644 index 000000000..0f1d5cf57 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-transport-wlan | |||
@@ -0,0 +1,12 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | capability setuid, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/gnunet-helper-transport-wlan-dummy b/contrib/apparmor/gnunet-helper-transport-wlan-dummy new file mode 100644 index 000000000..9ad58e5d0 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-transport-wlan-dummy | |||
@@ -0,0 +1,10 @@ | |||
1 | # Last Modified: Tue Jul 28 11:36:52 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr, | ||
9 | |||
10 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn b/contrib/apparmor/gnunet-helper-vpn index 3f9051db3..9be198d76 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn +++ b/contrib/apparmor/gnunet-helper-vpn | |||
@@ -1,16 +1,21 @@ | |||
1 | # Last Modified: Mon Jul 27 11:06:22 2015 | 1 | # Last Modified: Mon Jul 27 11:06:22 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) { |
5 | 6 | ||
7 | #Capability | ||
6 | capability net_admin, | 8 | capability net_admin, |
7 | capability setuid, | 9 | capability setuid, |
8 | 10 | ||
9 | /dev/net/tun rw, | 11 | /dev/net/tun rw, |
10 | /etc/ld.so.cache r, | 12 | /etc/ld.so.cache r, |
13 | |||
14 | #Librairies | ||
11 | /usr/lib/ld-*.so r, | 15 | /usr/lib/ld-*.so r, |
12 | /usr/lib/libc-*.so mr, | 16 | /usr/lib/libc-*.so mr, |
13 | /usr/lib/libm-*.so mr, | 17 | /usr/lib/libm-*.so mr, |
14 | /usr/local/lib/gnunet/libexec/gnunet-helper-vpn mr, | 18 | |
19 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn mr, | ||
15 | 20 | ||
16 | } | 21 | } |
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd b/contrib/apparmor/gnunet-namestore-fcfsd index 43527ae3b..9c57801a9 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd +++ b/contrib/apparmor/gnunet-namestore-fcfsd | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 21 17:25:12 2015 | 1 | # Last Modified: Tue Jul 21 17:25:12 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | #Librairies | 8 | #Librairies |
@@ -19,12 +20,12 @@ | |||
19 | 20 | ||
20 | /usr/lib/locale/locale-archive r, | 21 | /usr/lib/locale/locale-archive r, |
21 | 22 | ||
22 | /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd mr, | 23 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd mr, |
23 | 24 | ||
24 | #Gnunet librairies | 25 | #Gnunet librairies |
25 | /usr/local/lib/libgnunetdnsparser.so.* mr, | 26 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, |
26 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | 27 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, |
27 | /usr/local/lib/libgnunetidentity.so.* mr, | 28 | @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, |
28 | /usr/local/lib/libgnunetnamestore.so.* mr, | 29 | @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, |
29 | /usr/local/lib/libgnunetstatistics.so.* mr, | 30 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
30 | } | 31 | } |
diff --git a/contrib/apparmor/gnunet-service-arm b/contrib/apparmor/gnunet-service-arm new file mode 100644 index 000000000..5428c3ca9 --- /dev/null +++ b/contrib/apparmor/gnunet-service-arm | |||
@@ -0,0 +1,109 @@ | |||
1 | # Last Modified: Thu Jul 9 10:27:23 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /dev/null ra, | ||
9 | |||
10 | /tmp/gnunet-*-runtime/ rw, | ||
11 | /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, | ||
12 | /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw, | ||
13 | /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw, | ||
14 | /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw, | ||
15 | |||
16 | /tmp/gnunet-system-runtime/ rw, | ||
17 | /tmp/gnunet-system-runtime/gnunet-service-*.sock rw, | ||
18 | /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw, | ||
19 | /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw, | ||
20 | |||
21 | /var/lib/gnunet/.local/share/gnunet/ r, | ||
22 | /var/lib/gnunet/.local/share/gnunet/revocation.dat r, | ||
23 | /var/lib/gnunet/.local/share/gnunet/peerstore/ a, | ||
24 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, | ||
25 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, | ||
26 | /var/lib/gnunet/.config/gnunet.conf r, | ||
27 | |||
28 | #Librairies | ||
29 | /usr/lib/ld-*.so r, | ||
30 | /usr/lib/libpthread-*.so mr, | ||
31 | |||
32 | /usr/lib/libsqlite3.so.* mr, | ||
33 | |||
34 | /usr/lib/locale/locale-archive r, | ||
35 | |||
36 | /usr/share/locale/locale-alias r, | ||
37 | |||
38 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm mr, | ||
39 | |||
40 | @{GNUNET_PREFIX}/lib/gnunet/ r, | ||
41 | |||
42 | @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, | ||
43 | |||
44 | #Gnunet daemon | ||
45 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit Px, | ||
46 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist Px, | ||
47 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger Px, | ||
48 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px, | ||
49 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology Px, | ||
50 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt Px, | ||
51 | |||
52 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns Px, | ||
53 | |||
54 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy Px, | ||
55 | |||
56 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd Px, | ||
57 | |||
58 | #Gnunet service | ||
59 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats Px, | ||
60 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet Px, | ||
61 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core Px, | ||
62 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation Px, | ||
63 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore Px, | ||
64 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht Px, | ||
65 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns Px, | ||
66 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs Px, | ||
67 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns Px, | ||
68 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity Px, | ||
69 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh Px, | ||
70 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache Px, | ||
71 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore Px, | ||
72 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse Px, | ||
73 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo Px, | ||
74 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore Px, | ||
75 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex Px, | ||
76 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver Px, | ||
77 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation Px, | ||
78 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set Px, | ||
79 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px, | ||
80 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px, | ||
81 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics Px, | ||
82 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template Px, | ||
83 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px, | ||
84 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger Px, | ||
85 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport Px, | ||
86 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn Px, | ||
87 | |||
88 | #Gnunet helper | ||
89 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns r, | ||
90 | |||
91 | #Gnunet librairies | ||
92 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
93 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
94 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
95 | @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, | ||
96 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* r, | ||
97 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
98 | @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* r, | ||
99 | @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, | ||
100 | @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, | ||
101 | @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, | ||
102 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
103 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
104 | @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, | ||
105 | |||
106 | #Gnunet plugin | ||
107 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, | ||
108 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, | ||
109 | } | ||
diff --git a/contrib/apparmor/gnunet-service-ats b/contrib/apparmor/gnunet-service-ats new file mode 100644 index 000000000..53e849517 --- /dev/null +++ b/contrib/apparmor/gnunet-service-ats | |||
@@ -0,0 +1,20 @@ | |||
1 | # Last Modified: Wed Jul 8 10:49:34 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
14 | |||
15 | #Gnunet plugin | ||
16 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.la r, | ||
17 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.so mr, | ||
18 | |||
19 | /usr/lib/ld-*.so r, | ||
20 | } | ||
diff --git a/contrib/apparmor/gnunet-service-cadet b/contrib/apparmor/gnunet-service-cadet new file mode 100644 index 000000000..07def08ad --- /dev/null +++ b/contrib/apparmor/gnunet-service-cadet | |||
@@ -0,0 +1,26 @@ | |||
1 | # Last Modified: Mon Jul 27 11:09:34 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Librairies | ||
9 | /usr/lib/ld-*.so r, | ||
10 | /usr/lib/libpthread-*.so mr, | ||
11 | /usr/lib/librt-*.so mr, | ||
12 | |||
13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet mr, | ||
14 | |||
15 | #Gnunet librairies | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
24 | |||
25 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
26 | } | ||
diff --git a/contrib/apparmor/gnunet-service-conversation b/contrib/apparmor/gnunet-service-conversation new file mode 100644 index 000000000..d43c6d7a4 --- /dev/null +++ b/contrib/apparmor/gnunet-service-conversation | |||
@@ -0,0 +1,28 @@ | |||
1 | # Last Modified: Tue Jul 21 16:53:39 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Librairies | ||
9 | /usr/lib/ld-*.so r, | ||
10 | /usr/lib/libidn.so.* mr, | ||
11 | |||
12 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation mr, | ||
13 | |||
14 | #Gnunet librairies | ||
15 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetconversation.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetmicrophone.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, | ||
24 | @{GNUNET_PREFIX}/lib/libgnunetspeaker.so.* mr, | ||
25 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
26 | |||
27 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
28 | } | ||
diff --git a/contrib/apparmor/gnunet-service-core b/contrib/apparmor/gnunet-service-core new file mode 100644 index 000000000..24fdd641c --- /dev/null +++ b/contrib/apparmor/gnunet-service-core | |||
@@ -0,0 +1,20 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
10 | |||
11 | /usr/lib/ld-*.so r, | ||
12 | |||
13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core mr, | ||
14 | |||
15 | #Gnunet librairies | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
20 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore b/contrib/apparmor/gnunet-service-datastore index b38121e65..363946910 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore +++ b/contrib/apparmor/gnunet-service-datastore | |||
@@ -1,8 +1,9 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | 1 | # Last Modified: Thu Jul 9 10:16:30 2015 |
2 | 2 | ||
3 | #include <tunables/global> | 3 | #include <tunables/global> |
4 | #include <tunables/gnunet> | ||
4 | 5 | ||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-datastore { | 6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore { |
6 | #include <abstractions/gnunet-common> | 7 | #include <abstractions/gnunet-common> |
7 | 8 | ||
8 | /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw, | 9 | /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw, |
@@ -14,13 +15,13 @@ | |||
14 | /usr/lib/libpthread-*.so mr, | 15 | /usr/lib/libpthread-*.so mr, |
15 | /usr/lib/libsqlite3.so.* mr, | 16 | /usr/lib/libsqlite3.so.* mr, |
16 | 17 | ||
17 | /usr/local/lib/gnunet/libexec/gnunet-service-datastore mr, | 18 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore mr, |
18 | 19 | ||
19 | #Gnunet plugin | 20 | #Gnunet plugin |
20 | /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r, | 21 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r, |
21 | /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr, | 22 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr, |
22 | 23 | ||
23 | #Gnunet Librairies | 24 | #Gnunet Librairies |
24 | /usr/local/lib/libgnunetstatistics.so.* mr, | 25 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
25 | /usr/local/lib/libgnunetutil.so.* mr, | 26 | @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr, |
26 | } | 27 | } |
diff --git a/contrib/apparmor/gnunet-service-dht b/contrib/apparmor/gnunet-service-dht new file mode 100644 index 000000000..67c45beb8 --- /dev/null +++ b/contrib/apparmor/gnunet-service-dht | |||
@@ -0,0 +1,57 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:39 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
15 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetdatacache.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
24 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
25 | |||
26 | #Gnunet plugin | ||
27 | @{GNUNET_PREFIX}/lib/gnunet/ r, | ||
28 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r, | ||
29 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr, | ||
30 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r, | ||
31 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr, | ||
32 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r, | ||
33 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr, | ||
34 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r, | ||
35 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr, | ||
36 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r, | ||
37 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
38 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
39 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r, | ||
40 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr, | ||
41 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r, | ||
42 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr, | ||
43 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.la r, | ||
44 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.so mr, | ||
45 | |||
46 | #Librairies | ||
47 | /usr/lib/ld-*.so r, | ||
48 | /usr/lib/libextractor.so.* mr, | ||
49 | /usr/lib/libbz2.so.* mr, | ||
50 | /usr/lib/librt-*.so mr, | ||
51 | /usr/lib/libpthread-*.so mr, | ||
52 | /usr/lib/libidn.so.* mr, | ||
53 | |||
54 | /tmp/gnunet-system-runtime/gnunet-service-dht.sock w, | ||
55 | |||
56 | /tmp/gnunet-datacachebloom* rw, | ||
57 | } | ||
diff --git a/contrib/apparmor/gnunet-service-dns b/contrib/apparmor/gnunet-service-dns new file mode 100644 index 000000000..ba8a31ce1 --- /dev/null +++ b/contrib/apparmor/gnunet-service-dns | |||
@@ -0,0 +1,20 @@ | |||
1 | # Last Modified: Mon Jul 27 15:18:30 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | capability setgid, | ||
9 | |||
10 | /usr/lib/ld-*.so r, | ||
11 | |||
12 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns Px, | ||
13 | |||
14 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns mr, | ||
15 | |||
16 | #Gnunet librairies | ||
17 | @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, | ||
20 | } | ||
diff --git a/contrib/apparmor/gnunet-service-fs b/contrib/apparmor/gnunet-service-fs new file mode 100644 index 000000000..3d792e44d --- /dev/null +++ b/contrib/apparmor/gnunet-service-fs | |||
@@ -0,0 +1,60 @@ | |||
1 | # Last Modified: Wed Jul 8 10:52:48 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | /etc/gnunet.conf r, | ||
10 | @{HOME}/.config/gnunet.conf r, | ||
11 | |||
12 | /tmp/gnunet-system-runtime/gnunet-service-fs.sock w, | ||
13 | |||
14 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
15 | |||
16 | owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r, | ||
17 | |||
18 | #Librairies | ||
19 | /usr/lib/ld-*.so r, | ||
20 | /usr/lib/libbz2.so.* mr, | ||
21 | /usr/lib/libextractor.so.* mr, | ||
22 | /usr/lib/libidn.so.* mr, | ||
23 | /usr/lib/libpthread-*.so mr, | ||
24 | /usr/lib/librt-*.so mr, | ||
25 | |||
26 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs mr, | ||
27 | |||
28 | #Gnunet plugin | ||
29 | @{GNUNET_PREFIX}/lib/gnunet/ r, | ||
30 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r, | ||
31 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
32 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r, | ||
33 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr, | ||
34 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r, | ||
35 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr, | ||
36 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r, | ||
37 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr, | ||
38 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r, | ||
39 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr, | ||
40 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r, | ||
41 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr, | ||
42 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r, | ||
43 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr, | ||
44 | |||
45 | #Gnunet librairies | ||
46 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
47 | @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, | ||
48 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
49 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
50 | @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr, | ||
51 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
52 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
53 | @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr, | ||
54 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
55 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
56 | @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, | ||
57 | @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, | ||
58 | @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, | ||
59 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
60 | } | ||
diff --git a/contrib/apparmor/gnunet-service-gns b/contrib/apparmor/gnunet-service-gns new file mode 100644 index 000000000..b271eecba --- /dev/null +++ b/contrib/apparmor/gnunet-service-gns | |||
@@ -0,0 +1,30 @@ | |||
1 | # Last Modified: Wed Jul 8 15:17:46 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | @{HOME}/.config/gnunet.conf r, | ||
10 | |||
11 | #Librairies | ||
12 | /usr/lib/ld-2.21.so r, | ||
13 | /usr/lib/libidn.so.* mr, | ||
14 | |||
15 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns mr, | ||
16 | |||
17 | #Gnunet librairies | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
19 | @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
21 | @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, | ||
24 | @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, | ||
25 | @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, | ||
26 | @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr, | ||
27 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
28 | @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, | ||
29 | @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr, | ||
30 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity b/contrib/apparmor/gnunet-service-identity index 7e550acb9..8cf0f99b6 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity +++ b/contrib/apparmor/gnunet-service-identity | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 21 11:51:29 2015 | 1 | # Last Modified: Tue Jul 21 11:51:29 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-identity { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /tmp/gnunet-*-runtime/ a, | 8 | /tmp/gnunet-*-runtime/ a, |
@@ -11,8 +12,8 @@ | |||
11 | /var/lib/gnunet/.local/share/gnunet/identity/ a, | 12 | /var/lib/gnunet/.local/share/gnunet/identity/ a, |
12 | /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra, | 13 | /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra, |
13 | 14 | ||
14 | /usr/local/lib/gnunet/libexec/gnunet-service-identity mr, | 15 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity mr, |
15 | /usr/local/lib/libgnunetstatistics.so.* mr, | 16 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
16 | 17 | ||
17 | @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw, | 18 | @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw, |
18 | 19 | ||
diff --git a/contrib/apparmor/gnunet-service-mesh b/contrib/apparmor/gnunet-service-mesh new file mode 100644 index 000000000..91c3044ae --- /dev/null +++ b/contrib/apparmor/gnunet-service-mesh | |||
@@ -0,0 +1,30 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:56 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
15 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
16 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, | ||
17 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
18 | @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, | ||
19 | |||
20 | #Librairies | ||
21 | /usr/lib/librt-*.so mr, | ||
22 | /usr/lib/libpthread-*.so mr, | ||
23 | /usr/lib/ld-*.so r, | ||
24 | |||
25 | @{HOME}/.local/share/gnunet/private_key.ecc rk, | ||
26 | |||
27 | /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w, | ||
28 | |||
29 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, | ||
30 | } | ||
diff --git a/contrib/apparmor/gnunet-service-namecache b/contrib/apparmor/gnunet-service-namecache new file mode 100644 index 000000000..8b5f21103 --- /dev/null +++ b/contrib/apparmor/gnunet-service-namecache | |||
@@ -0,0 +1,30 @@ | |||
1 | # Last Modified: Thu Jul 9 10:01:49 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, | ||
15 | |||
16 | #Gnunet plugin | ||
17 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r, | ||
18 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr, | ||
19 | |||
20 | /var/lib/gnunet/.local/share/gnunet/namecache/ r, | ||
21 | /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk, | ||
22 | /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw, | ||
23 | |||
24 | #Librairies | ||
25 | /usr/lib/libpthread-*.so mr, | ||
26 | /usr/lib/libsqlite3.so.* mr, | ||
27 | /usr/lib/libidn.so.* mr, | ||
28 | /usr/lib/ld-*.so r, | ||
29 | } | ||
30 | |||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore b/contrib/apparmor/gnunet-service-namestore index 3b917a2a3..68b94e6aa 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore +++ b/contrib/apparmor/gnunet-service-namestore | |||
@@ -1,21 +1,22 @@ | |||
1 | # Last Modified: Tue Jul 7 10:43:41 2015 | 1 | # Last Modified: Tue Jul 7 10:43:41 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-namestore { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-namestore mr, | 8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore mr, |
8 | 9 | ||
9 | #Gnunet librairies | 10 | #Gnunet librairies |
10 | /usr/local/lib/libgnunetnamecache.so.* mr, | 11 | @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, |
11 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | 12 | @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, |
12 | /usr/local/lib/libgnunetstatistics.so.* mr, | 13 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
13 | /usr/local/lib/libgnunetnamestore.so.* mr, | 14 | @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, |
14 | /usr/local/lib/libgnunetdnsparser.so.* mr, | 15 | @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, |
15 | 16 | ||
16 | #Gnunet plugin | 17 | #Gnunet plugin |
17 | /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r, | 18 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r, |
18 | /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr, | 19 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr, |
19 | 20 | ||
20 | #Librairies | 21 | #Librairies |
21 | /usr/lib/libidn.so.* mr, | 22 | /usr/lib/libidn.so.* mr, |
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse b/contrib/apparmor/gnunet-service-nse index 54acd5215..a3f7f2a12 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse +++ b/contrib/apparmor/gnunet-service-nse | |||
@@ -1,15 +1,16 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:49 2015 | 1 | # Last Modified: Fri Jul 3 17:37:49 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-nse { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-nse mr, | 8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse mr, |
8 | 9 | ||
9 | #Gnunet librairies | 10 | #Gnunet librairies |
10 | /usr/local/lib/libgnunetnse.so.* mr, | 11 | @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr, |
11 | /usr/local/lib/libgnunetcore.so.* mr, | 12 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, |
12 | /usr/local/lib/libgnunetstatistics.so.* mr, | 13 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
13 | 14 | ||
14 | /usr/lib/ld-*.so mr, | 15 | /usr/lib/ld-*.so mr, |
15 | 16 | ||
diff --git a/contrib/apparmor/gnunet-service-peerinfo b/contrib/apparmor/gnunet-service-peerinfo new file mode 100644 index 000000000..1ce4a85f8 --- /dev/null +++ b/contrib/apparmor/gnunet-service-peerinfo | |||
@@ -0,0 +1,21 @@ | |||
1 | # Last Modified: Wed Jul 8 17:03:17 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | @{GNUNET_PREFIX}/share/gnunet/hellos/ r, | ||
10 | @{GNUNET_PREFIX}/share/gnunet/hellos/* r, | ||
11 | |||
12 | /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r, | ||
13 | /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw, | ||
14 | |||
15 | /usr/lib/ld-*.so r, | ||
16 | |||
17 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo mr, | ||
18 | |||
19 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
20 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
21 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore b/contrib/apparmor/gnunet-service-peerstore index 0f9f8ed8c..536e4ee0f 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore +++ b/contrib/apparmor/gnunet-service-peerstore | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Mon Jul 27 11:06:13 2015 | 1 | # Last Modified: Mon Jul 27 11:06:13 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-peerstore { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | #Librairies | 8 | #Librairies |
@@ -9,14 +10,14 @@ | |||
9 | /usr/lib/libpthread-*.so mr, | 10 | /usr/lib/libpthread-*.so mr, |
10 | /usr/lib/libsqlite3.so.* mr, | 11 | /usr/lib/libsqlite3.so.* mr, |
11 | 12 | ||
12 | /usr/local/lib/gnunet/libexec/gnunet-service-peerstore mr, | 13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore mr, |
13 | 14 | ||
14 | #Gnunet Plugin | 15 | #Gnunet Plugin |
15 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, | 16 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, |
16 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, | 17 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, |
17 | 18 | ||
18 | #Gnunet librairies | 19 | #Gnunet librairies |
19 | /usr/local/lib/libgnunetpeerstore.so.* mr, | 20 | @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, |
20 | 21 | ||
21 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, | 22 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, |
22 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, | 23 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, |
diff --git a/contrib/apparmor/gnunet-service-regex b/contrib/apparmor/gnunet-service-regex new file mode 100644 index 000000000..358675dc0 --- /dev/null +++ b/contrib/apparmor/gnunet-service-regex | |||
@@ -0,0 +1,18 @@ | |||
1 | # Last Modified: Tue Jul 21 16:59:39 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /usr/lib/ld-*.so r, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex mr, | ||
11 | |||
12 | #Gnunet librairies | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, | ||
15 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
16 | |||
17 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
18 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver b/contrib/apparmor/gnunet-service-resolver index 0ffa5cea2..6c5e3eb60 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver +++ b/contrib/apparmor/gnunet-service-resolver | |||
@@ -1,10 +1,11 @@ | |||
1 | # Last Modified: Thu Jul 9 10:01:36 2015 | 1 | # Last Modified: Thu Jul 9 10:01:36 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-resolver { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-resolver mr, | 8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver mr, |
8 | 9 | ||
9 | #Librairies | 10 | #Librairies |
10 | /usr/lib/ld-*.so r, | 11 | /usr/lib/ld-*.so r, |
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation b/contrib/apparmor/gnunet-service-revocation index c226502b3..6e6412820 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation +++ b/contrib/apparmor/gnunet-service-revocation | |||
@@ -1,8 +1,9 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | 1 | # Last Modified: Thu Jul 9 10:16:30 2015 |
2 | 2 | ||
3 | #include <tunables/global> | 3 | #include <tunables/global> |
4 | #include <tunables/gnunet> | ||
4 | 5 | ||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-revocation { | 6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation { |
6 | #include <abstractions/gnunet-common> | 7 | #include <abstractions/gnunet-common> |
7 | 8 | ||
8 | /etc/gnunet.conf r, | 9 | /etc/gnunet.conf r, |
@@ -16,11 +17,11 @@ | |||
16 | 17 | ||
17 | /usr/lib/ld-*.so r, | 18 | /usr/lib/ld-*.so r, |
18 | 19 | ||
19 | /usr/local/lib/gnunet/libexec/gnunet-service-revocation mr, | 20 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation mr, |
20 | 21 | ||
21 | #Gnunet librairies | 22 | #Gnunet librairies |
22 | /usr/local/lib/libgnunetcore.so.* mr, | 23 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, |
23 | /usr/local/lib/libgnunetrevocation.so.* mr, | 24 | @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr, |
24 | /usr/local/lib/libgnunetset.so.* mr, | 25 | @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, |
25 | /usr/local/lib/libgnunetstatistics.so.* mr, | 26 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, |
26 | } | 27 | } |
diff --git a/contrib/apparmor/gnunet-service-scalarproduct-alice b/contrib/apparmor/gnunet-service-scalarproduct-alice new file mode 100644 index 000000000..7a7ba77d5 --- /dev/null +++ b/contrib/apparmor/gnunet-service-scalarproduct-alice | |||
@@ -0,0 +1,13 @@ | |||
1 | # Last Modified: Mon Jul 27 15:48:05 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /usr/lib/ld-*.so r, | ||
9 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr, | ||
10 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, | ||
12 | |||
13 | } | ||
diff --git a/contrib/apparmor/gnunet-service-scalarproduct-bob b/contrib/apparmor/gnunet-service-scalarproduct-bob new file mode 100644 index 000000000..a7faae9d0 --- /dev/null +++ b/contrib/apparmor/gnunet-service-scalarproduct-bob | |||
@@ -0,0 +1,14 @@ | |||
1 | # Last Modified: Mon Jul 27 15:48:05 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /usr/lib/ld-*.so r, | ||
9 | |||
10 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr, | ||
11 | |||
12 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, | ||
14 | } | ||
diff --git a/contrib/apparmor/gnunet-service-set b/contrib/apparmor/gnunet-service-set new file mode 100644 index 000000000..d290f7eda --- /dev/null +++ b/contrib/apparmor/gnunet-service-set | |||
@@ -0,0 +1,18 @@ | |||
1 | # Last Modified: Wed Jul 8 10:52:48 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set mr, | ||
9 | |||
10 | #Gnunet librairies | ||
11 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
12 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
13 | @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, | ||
14 | @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, | ||
15 | |||
16 | #Librairies | ||
17 | /usr/lib/ld-*.so r, | ||
18 | } | ||
diff --git a/contrib/apparmor/gnunet-service-statistics b/contrib/apparmor/gnunet-service-statistics new file mode 100644 index 000000000..e26e30edc --- /dev/null +++ b/contrib/apparmor/gnunet-service-statistics | |||
@@ -0,0 +1,16 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | /var/lib/gnunet/.local/share/gnunet/statistics.dat rw, | ||
10 | |||
11 | /usr/lib/ld-*.so r, | ||
12 | |||
13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics mr, | ||
14 | |||
15 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
16 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template b/contrib/apparmor/gnunet-service-template index 15a00cbee..824183e78 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template +++ b/contrib/apparmor/gnunet-service-template | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 21 16:06:04 2015 | 1 | # Last Modified: Tue Jul 21 16:06:04 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-template { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | /tmp/gnunet-system-runtime/ w, | 8 | /tmp/gnunet-system-runtime/ w, |
@@ -11,5 +12,5 @@ | |||
11 | /usr/lib/ld-*.so r, | 12 | /usr/lib/ld-*.so r, |
12 | 13 | ||
13 | #Gnunet Librairies | 14 | #Gnunet Librairies |
14 | /usr/local/lib/gnunet/libexec/gnunet-service-template mr, | 15 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template mr, |
15 | } | 16 | } |
diff --git a/contrib/apparmor/gnunet-service-testbed b/contrib/apparmor/gnunet-service-testbed new file mode 100644 index 000000000..06e8f36ea --- /dev/null +++ b/contrib/apparmor/gnunet-service-testbed | |||
@@ -0,0 +1,36 @@ | |||
1 | # Last Modified: Mon Jul 27 11:02:46 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /etc/gai.conf r, | ||
9 | |||
10 | /tmp/gnunet-system-runtime/ w, | ||
11 | /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w, | ||
12 | /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w, | ||
13 | |||
14 | /usr/lib/ld-*.so r, | ||
15 | |||
16 | /dev/null r, | ||
17 | |||
18 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-* r, | ||
19 | |||
20 | @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, | ||
21 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px, | ||
22 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed mr, | ||
23 | |||
24 | #Gnunet librairies | ||
25 | @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, | ||
26 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
27 | @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, | ||
28 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
29 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
30 | @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr, | ||
31 | @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr, | ||
32 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
33 | |||
34 | @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r, | ||
35 | |||
36 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger b/contrib/apparmor/gnunet-service-testbed-logger index b646b9450..5bd6a77d3 100644 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger +++ b/contrib/apparmor/gnunet-service-testbed-logger | |||
@@ -1,7 +1,8 @@ | |||
1 | # Last Modified: Tue Jul 21 17:19:18 2015 | 1 | # Last Modified: Tue Jul 21 17:19:18 2015 |
2 | #include <tunables/global> | 2 | #include <tunables/global> |
3 | #include <tunables/gnunet> | ||
3 | 4 | ||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger { | 5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger { |
5 | #include <abstractions/gnunet-common> | 6 | #include <abstractions/gnunet-common> |
6 | 7 | ||
7 | #??? | 8 | #??? |
@@ -12,5 +13,5 @@ | |||
12 | 13 | ||
13 | /usr/lib/ld-*.so r, | 14 | /usr/lib/ld-*.so r, |
14 | 15 | ||
15 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger mr, | 16 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger mr, |
16 | } | 17 | } |
diff --git a/contrib/apparmor/gnunet-service-transport b/contrib/apparmor/gnunet-service-transport new file mode 100644 index 000000000..52985cf1b --- /dev/null +++ b/contrib/apparmor/gnunet-service-transport | |||
@@ -0,0 +1,29 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | #include <tunables/gnunet> | ||
5 | |||
6 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport { | ||
7 | #include <abstractions/gnunet-common> | ||
8 | |||
9 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
10 | |||
11 | /usr/lib/ld-*.so r, | ||
12 | |||
13 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport mr, | ||
14 | |||
15 | #Gnunet plugin | ||
16 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.la r, | ||
17 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.so mr, | ||
18 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.la r, | ||
19 | @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.so mr, | ||
20 | |||
21 | #Gnunet librairies | ||
22 | @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetfragmentation.so.* mr, | ||
24 | @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, | ||
25 | @{GNUNET_PREFIX}/lib/libgnunetnat.so.* mr, | ||
26 | @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, | ||
27 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
28 | @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, | ||
29 | } | ||
diff --git a/contrib/apparmor/gnunet-service-vpn b/contrib/apparmor/gnunet-service-vpn new file mode 100644 index 000000000..56845568e --- /dev/null +++ b/contrib/apparmor/gnunet-service-vpn | |||
@@ -0,0 +1,28 @@ | |||
1 | # Last Modified: Mon Jul 20 11:20:57 2015 | ||
2 | #include <tunables/global> | ||
3 | #include <tunables/gnunet> | ||
4 | |||
5 | profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | #Capability | ||
9 | capability setuid, | ||
10 | capability net_admin, | ||
11 | |||
12 | /dev/net/tun rw, | ||
13 | |||
14 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn mr, | ||
15 | |||
16 | #Librairies | ||
17 | /usr/lib/ld-*.so r, | ||
18 | |||
19 | #Gnunet helper | ||
20 | @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn Px, | ||
21 | |||
22 | #Gnunet librairies | ||
23 | @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, | ||
24 | @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, | ||
25 | @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, | ||
26 | @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, | ||
27 | @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, | ||
28 | } | ||
diff --git a/contrib/apparmor/tunables/gnunet b/contrib/apparmor/tunables/gnunet new file mode 100644 index 000000000..e7ff8256a --- /dev/null +++ b/contrib/apparmor/tunables/gnunet | |||
@@ -0,0 +1 @@ | |||
@{GNUNET_PREFIX}=/usr/local | |||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit deleted file mode 100644 index 122b729bd..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit +++ /dev/null | |||
@@ -1,23 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 15:57:50 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-exit { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/lib/ld-*.so r, | ||
8 | |||
9 | /usr/lib/locale/locale-archive r, | ||
10 | |||
11 | /usr/local/lib/gnunet/libexec/gnunet-daemon-exit mr, | ||
12 | |||
13 | #Gnunet librairies | ||
14 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
15 | /usr/local/lib/libgnunetdht.so.* mr, | ||
16 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
17 | /usr/local/lib/libgnunetregex.so.* mr, | ||
18 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
19 | /usr/local/lib/libgnunettun.so.* mr, | ||
20 | |||
21 | /usr/share/locale/locale.alias r, | ||
22 | |||
23 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt deleted file mode 100644 index 95a1bcf52..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt +++ /dev/null | |||
@@ -1,25 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 20 17:48:20 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-pt { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | #Librairies | ||
8 | /usr/lib/ld-*.so r, | ||
9 | /usr/lib/libidn.so.* mr, | ||
10 | |||
11 | /usr/lib/locale/locale-archive r, | ||
12 | |||
13 | /usr/local/lib/gnunet/libexec/gnunet-daemon-pt mr, | ||
14 | |||
15 | #Gnunet librairies | ||
16 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
17 | /usr/local/lib/libgnunetdht.so.* mr, | ||
18 | /usr/local/lib/libgnunetdns.so.* mr, | ||
19 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
20 | /usr/local/lib/libgnunetmesh.so.* mr, | ||
21 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
22 | /usr/local/lib/libgnunetvpn.so.* mr, | ||
23 | |||
24 | /usr/share/locale/locale.alias r, | ||
25 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler deleted file mode 100644 index da3d40887..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler +++ /dev/null | |||
@@ -1,12 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr, | ||
8 | /usr/local/lib/libgnunetdht.so.* mr, | ||
9 | /usr/local/lib/libgnunetregexblock.so.* mr, | ||
10 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist deleted file mode 100644 index 15fa9ffe5..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist +++ /dev/null | |||
@@ -1,12 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr, | ||
8 | /usr/local/lib/libgnunetats.so.* mr, | ||
9 | /usr/local/lib/libgnunethello.so.* mr, | ||
10 | /usr/local/lib/libgnunettransport.so.* mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay deleted file mode 100644 index 260b60400..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay +++ /dev/null | |||
@@ -1,22 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 16:37:03 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | #Librairies | ||
8 | /usr/lib/ld-*.so r, | ||
9 | /usr/lib/libpthread-*.so mr, | ||
10 | /usr/lib/libsqlite3.so.* mr, | ||
11 | |||
12 | /usr/lib/locale/locale-archive r, | ||
13 | |||
14 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr, | ||
15 | |||
16 | #Gnunet librairies | ||
17 | /usr/local/lib/libgnunetats.so.* mr, | ||
18 | /usr/local/lib/libgnunethello.so.* mr, | ||
19 | /usr/local/lib/libgnunettransport.so.* mr, | ||
20 | |||
21 | /usr/share/locale/locale.alias r, | ||
22 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology deleted file mode 100644 index eb1d9306f..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology +++ /dev/null | |||
@@ -1,26 +0,0 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:12 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-daemon-topology { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-daemon-topology mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunetats.so.* mr, | ||
11 | /usr/local/lib/libgnunetfriends.so.* mr, | ||
12 | /usr/local/lib/libgnunetcore.so.* mr, | ||
13 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | ||
14 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
15 | /usr/local/lib/libgnunettransport.so.* mr, | ||
16 | /usr/local/lib/libgnunethello.so.* mr, | ||
17 | |||
18 | /usr/lib/ld-*.so r, | ||
19 | |||
20 | /usr/lib//locale/locale-archive r, | ||
21 | |||
22 | /usr/lib/gconv/gconv-modules r, | ||
23 | |||
24 | /usr/share/locale/locale.alias r, | ||
25 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | ||
26 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns deleted file mode 100644 index 5b1bdc2b0..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns +++ /dev/null | |||
@@ -1,25 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 21 16:45:05 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-dns2gns { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | #Librairies | ||
8 | /usr/lib/ld-*.so r, | ||
9 | /usr/lib/libidn.so.* mr, | ||
10 | |||
11 | /usr/lib/locale/locale-archive r, | ||
12 | |||
13 | /usr/local/lib/gnunet/libexec/gnunet-dns2gns mr, | ||
14 | |||
15 | #Gnunet librairies | ||
16 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
17 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
18 | /usr/local/lib/libgnunetgns.so.* mr, | ||
19 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
20 | /usr/local/lib/libgnunetidentity.so.* mr, | ||
21 | /usr/local/lib/libgnunetnamestore.so.* mr, | ||
22 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
23 | |||
24 | /usr/share/locale/locale.alias r, | ||
25 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback deleted file mode 100644 index b6663899e..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback +++ /dev/null | |||
@@ -1,9 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:46:24 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | #include <abstractions/gnunet-libaudio> | ||
7 | |||
8 | /usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback mr, | ||
9 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record deleted file mode 100644 index e0a41edc3..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record +++ /dev/null | |||
@@ -1,9 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:42:58 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | #include <abstractions/gnunet-libaudio> | ||
7 | |||
8 | /usr/local/lib/gnunet/libexec/gnunet-helper-audio-record mr, | ||
9 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit deleted file mode 100644 index e18b49358..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit +++ /dev/null | |||
@@ -1,11 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setuid, | ||
8 | |||
9 | /usr/local/lib/gnunet/libexec/gnunet-helper-exit mr, | ||
10 | |||
11 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client deleted file mode 100644 index 32cb42552..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client +++ /dev/null | |||
@@ -1,11 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setuid, | ||
8 | |||
9 | /usr/local/lib/gnunet/libexec/gnunet-helper-nat-client mr, | ||
10 | |||
11 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server deleted file mode 100644 index c3bd37910..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server +++ /dev/null | |||
@@ -1,11 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setuid, | ||
8 | |||
9 | /usr/local/lib/gnunet/libexec/gnunet-helper-nat-server mr, | ||
10 | |||
11 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed deleted file mode 100644 index 8c6748d4a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed +++ /dev/null | |||
@@ -1,36 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 11:02:37 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /dev/null rw, | ||
8 | |||
9 | /etc/gai.conf r, | ||
10 | |||
11 | /usr/lib/ld-*.so r, | ||
12 | |||
13 | /usr/lib/locale/locale-archive r, | ||
14 | |||
15 | /usr/share/locale/locale.alias r, | ||
16 | /usr/share/locale/fr/LC_MESSAGES/libc.mo r, | ||
17 | |||
18 | /usr/lib/gconv/gconv-modules r, | ||
19 | |||
20 | /usr/local/lib/gnunet/libexec/ r, | ||
21 | /usr/local/lib/gnunet/libexec/gnunet-helper-testbed mr, | ||
22 | /usr/local/lib/gnunet/libexec/gnunet-service-arm r, | ||
23 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px, | ||
24 | |||
25 | #Gnunet librairies | ||
26 | /usr/local/lib/libgnunetarm.so.* mr, | ||
27 | /usr/local/lib/libgnunetats.so.* mr, | ||
28 | /usr/local/lib/libgnunetcore.so.* mr, | ||
29 | /usr/local/lib/libgnunethello.so.* mr, | ||
30 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
31 | /usr/local/lib/libgnunettestbed.so.* mr, | ||
32 | /usr/local/lib/libgnunettesting.so.* mr, | ||
33 | /usr/local/lib/libgnunettransport.so.* mr, | ||
34 | |||
35 | /usr/local/share/gnunet/testing_hostkeys.ecc r, | ||
36 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan deleted file mode 100644 index 6f2f98e15..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan +++ /dev/null | |||
@@ -1,11 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:44:00 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setuid, | ||
8 | |||
9 | /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan mr, | ||
10 | |||
11 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy deleted file mode 100644 index d9ffed813..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy +++ /dev/null | |||
@@ -1,9 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 28 11:36:52 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr, | ||
8 | |||
9 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm deleted file mode 100644 index fe3f037ed..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm +++ /dev/null | |||
@@ -1,109 +0,0 @@ | |||
1 | # Last Modified: Thu Jul 9 10:27:23 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-arm { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /dev/null ra, | ||
9 | |||
10 | /tmp/gnunet-*-runtime/ rw, | ||
11 | /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, | ||
12 | /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw, | ||
13 | /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw, | ||
14 | /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw, | ||
15 | |||
16 | /tmp/gnunet-system-runtime/ rw, | ||
17 | /tmp/gnunet-system-runtime/gnunet-service-*.sock rw, | ||
18 | /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw, | ||
19 | /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw, | ||
20 | |||
21 | /var/lib/gnunet/.local/share/gnunet/ r, | ||
22 | /var/lib/gnunet/.local/share/gnunet/revocation.dat r, | ||
23 | /var/lib/gnunet/.local/share/gnunet/peerstore/ a, | ||
24 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, | ||
25 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, | ||
26 | /var/lib/gnunet/.config/gnunet.conf r, | ||
27 | |||
28 | #Librairies | ||
29 | /usr/lib/ld-*.so r, | ||
30 | /usr/lib/libpthread-*.so mr, | ||
31 | |||
32 | /usr/lib/libsqlite3.so.* mr, | ||
33 | |||
34 | /usr/lib/locale/locale-archive r, | ||
35 | |||
36 | /usr/share/locale/locale-alias r, | ||
37 | |||
38 | /usr/local/lib/gnunet/libexec/gnunet-service-arm mr, | ||
39 | |||
40 | /usr/local/lib/gnunet/ r, | ||
41 | |||
42 | /usr/local/lib/gnunet/libexec/ r, | ||
43 | |||
44 | #Gnunet daemon | ||
45 | /usr/local/lib/gnunet/libexec/gnunet-daemon-exit Px, | ||
46 | /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist Px, | ||
47 | /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger Px, | ||
48 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px, | ||
49 | /usr/local/lib/gnunet/libexec/gnunet-daemon-topology Px, | ||
50 | /usr/local/lib/gnunet/libexec/gnunet-daemon-pt Px, | ||
51 | |||
52 | /usr/local/lib/gnunet/libexec/gnunet-dns2gns Px, | ||
53 | |||
54 | /usr/local/lib/gnunet/libexec/gnunet-gns-proxy Px, | ||
55 | |||
56 | /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd Px, | ||
57 | |||
58 | #Gnunet service | ||
59 | /usr/local/lib/gnunet/libexec/gnunet-service-ats Px, | ||
60 | /usr/local/lib/gnunet/libexec/gnunet-service-cadet Px, | ||
61 | /usr/local/lib/gnunet/libexec/gnunet-service-core Px, | ||
62 | /usr/local/lib/gnunet/libexec/gnunet-service-conversation Px, | ||
63 | /usr/local/lib/gnunet/libexec/gnunet-service-datastore Px, | ||
64 | /usr/local/lib/gnunet/libexec/gnunet-service-dht Px, | ||
65 | /usr/local/lib/gnunet/libexec/gnunet-service-dns Px, | ||
66 | /usr/local/lib/gnunet/libexec/gnunet-service-fs Px, | ||
67 | /usr/local/lib/gnunet/libexec/gnunet-service-gns Px, | ||
68 | /usr/local/lib/gnunet/libexec/gnunet-service-identity Px, | ||
69 | /usr/local/lib/gnunet/libexec/gnunet-service-mesh Px, | ||
70 | /usr/local/lib/gnunet/libexec/gnunet-service-namecache Px, | ||
71 | /usr/local/lib/gnunet/libexec/gnunet-service-namestore Px, | ||
72 | /usr/local/lib/gnunet/libexec/gnunet-service-nse Px, | ||
73 | /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo Px, | ||
74 | /usr/local/lib/gnunet/libexec/gnunet-service-peerstore Px, | ||
75 | /usr/local/lib/gnunet/libexec/gnunet-service-regex Px, | ||
76 | /usr/local/lib/gnunet/libexec/gnunet-service-resolver Px, | ||
77 | /usr/local/lib/gnunet/libexec/gnunet-service-revocation Px, | ||
78 | /usr/local/lib/gnunet/libexec/gnunet-service-set Px, | ||
79 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px, | ||
80 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px, | ||
81 | /usr/local/lib/gnunet/libexec/gnunet-service-statistics Px, | ||
82 | /usr/local/lib/gnunet/libexec/gnunet-service-template Px, | ||
83 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px, | ||
84 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger Px, | ||
85 | /usr/local/lib/gnunet/libexec/gnunet-service-transport Px, | ||
86 | /usr/local/lib/gnunet/libexec/gnunet-service-vpn Px, | ||
87 | |||
88 | #Gnunet helper | ||
89 | /usr/local/lib/gnunet/libexec/gnunet-helper-dns r, | ||
90 | |||
91 | #Gnunet librairies | ||
92 | /usr/local/lib/libgnunetats.so.* mr, | ||
93 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
94 | /usr/local/lib/libgnunetdht.so.* mr, | ||
95 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
96 | /usr/local/lib/libgnunetgnsrecord.so.* r, | ||
97 | /usr/local/lib/libgnunethello.so.* mr, | ||
98 | /usr/local/lib/libgnunetnamecache.so.* r, | ||
99 | /usr/local/lib/libgnunetpeerstore.so.* mr, | ||
100 | /usr/local/lib/libgnunetregex.so.* mr, | ||
101 | /usr/local/lib/libgnunetset.so.* mr, | ||
102 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
103 | /usr/local/lib/libgnunettransport.so.* mr, | ||
104 | /usr/local/lib/libgnunettun.so.* mr, | ||
105 | |||
106 | #Gnunet plugin | ||
107 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, | ||
108 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, | ||
109 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats deleted file mode 100644 index 86273dc34..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats +++ /dev/null | |||
@@ -1,19 +0,0 @@ | |||
1 | # Last Modified: Wed Jul 8 10:49:34 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-ats { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-ats mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunethello.so.* mr, | ||
11 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
12 | /usr/local/lib/libgnunetats.so.* mr, | ||
13 | |||
14 | #Gnunet plugin | ||
15 | /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.la r, | ||
16 | /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.so mr, | ||
17 | |||
18 | /usr/lib/ld-*.so r, | ||
19 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet deleted file mode 100644 index f834a6d05..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet +++ /dev/null | |||
@@ -1,21 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 11:09:34 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-cadet { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/lib/ld-*.so r, | ||
8 | /usr/lib/libpthread-*.so mr, | ||
9 | /usr/lib/librt-*.so mr, | ||
10 | /usr/local/lib/gnunet/libexec/gnunet-service-cadet mr, | ||
11 | /usr/local/lib/libgnunetats.so.* mr, | ||
12 | /usr/local/lib/libgnunetblock.so.* mr, | ||
13 | /usr/local/lib/libgnunetcore.so.* mr, | ||
14 | /usr/local/lib/libgnunetdht.so.* mr, | ||
15 | /usr/local/lib/libgnunethello.so.* mr, | ||
16 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | ||
17 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
18 | /usr/local/lib/libgnunettransport.so.* mr, | ||
19 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
20 | |||
21 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation deleted file mode 100644 index 9b952866e..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation +++ /dev/null | |||
@@ -1,27 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 21 16:53:39 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-conversation { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | #Librairies | ||
8 | /usr/lib/ld-*.so r, | ||
9 | /usr/lib/libidn.so.* mr, | ||
10 | |||
11 | /usr/local/lib/gnunet/libexec/gnunet-service-conversation mr, | ||
12 | |||
13 | #Gnunet librairies | ||
14 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
15 | /usr/local/lib/libgnunetconversation.so.* mr, | ||
16 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
17 | /usr/local/lib/libgnunetgns.so.* mr, | ||
18 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
19 | /usr/local/lib/libgnunetidentity.so.* mr, | ||
20 | /usr/local/lib/libgnunetmesh.so.* mr, | ||
21 | /usr/local/lib/libgnunetmicrophone.so.* mr, | ||
22 | /usr/local/lib/libgnunetnamestore.so.* mr, | ||
23 | /usr/local/lib/libgnunetspeaker.so.* mr, | ||
24 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
25 | |||
26 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
27 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core deleted file mode 100644 index e2b4229bb..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core +++ /dev/null | |||
@@ -1,19 +0,0 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-core { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
9 | |||
10 | /usr/lib/ld-*.so r, | ||
11 | |||
12 | /usr/local/lib/gnunet/libexec/gnunet-service-core mr, | ||
13 | |||
14 | #Gnunet librairies | ||
15 | /usr/local/lib/libgnunetats.so.* mr, | ||
16 | /usr/local/lib/libgnunethello.so.* mr, | ||
17 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
18 | /usr/local/lib/libgnunettransport.so.* mr, | ||
19 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht deleted file mode 100644 index 224465cd5..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht +++ /dev/null | |||
@@ -1,56 +0,0 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:39 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-dht { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-dht mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
11 | /usr/local/lib/libgnunetcore.so.* mr, | ||
12 | /usr/local/lib/libgnunetnse.so.* mr, | ||
13 | /usr/local/lib/libgnunetats.so.* mr, | ||
14 | /usr/local/lib/libgnunettransport.so.* mr, | ||
15 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | ||
16 | /usr/local/lib/libgnunethello.so.* mr, | ||
17 | /usr/local/lib/libgnunetblock.so.* mr, | ||
18 | /usr/local/lib/libgnunetdatacache.so.* mr, | ||
19 | /usr/local/lib/libgnunetfs.so.* mr, | ||
20 | /usr/local/lib/libgnunetdatastore.so.* mr, | ||
21 | /usr/local/lib/libgnunetregexblock.so.* mr, | ||
22 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
23 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
24 | |||
25 | #Gnunet plugin | ||
26 | /usr/local/lib/gnunet/ r, | ||
27 | /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r, | ||
28 | /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr, | ||
29 | /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r, | ||
30 | /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr, | ||
31 | /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r, | ||
32 | /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr, | ||
33 | /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r, | ||
34 | /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr, | ||
35 | /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r, | ||
36 | /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
37 | /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
38 | /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r, | ||
39 | /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr, | ||
40 | /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r, | ||
41 | /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr, | ||
42 | /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.la r, | ||
43 | /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.so mr, | ||
44 | |||
45 | #Librairies | ||
46 | /usr/lib/ld-*.so r, | ||
47 | /usr/lib/libextractor.so.* mr, | ||
48 | /usr/lib/libbz2.so.* mr, | ||
49 | /usr/lib/librt-*.so mr, | ||
50 | /usr/lib/libpthread-*.so mr, | ||
51 | /usr/lib/libidn.so.* mr, | ||
52 | |||
53 | /tmp/gnunet-system-runtime/gnunet-service-dht.sock w, | ||
54 | |||
55 | /tmp/gnunet-datacachebloom* rw, | ||
56 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns deleted file mode 100644 index 2f2dd711a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns +++ /dev/null | |||
@@ -1,19 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 15:18:30 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-dns { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setgid, | ||
8 | |||
9 | /usr/lib/ld-*.so r, | ||
10 | |||
11 | /usr/local/lib/gnunet/libexec/gnunet-helper-dns Px, | ||
12 | |||
13 | /usr/local/lib/gnunet/libexec/gnunet-service-dns mr, | ||
14 | |||
15 | #Gnunet librairies | ||
16 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
17 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
18 | /usr/local/lib/libgnunettun.so.* mr, | ||
19 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs deleted file mode 100644 index 247d29282..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs +++ /dev/null | |||
@@ -1,59 +0,0 @@ | |||
1 | # Last Modified: Wed Jul 8 10:52:48 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-fs { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /etc/gnunet.conf r, | ||
9 | @{HOME}/.config/gnunet.conf r, | ||
10 | |||
11 | /tmp/gnunet-system-runtime/gnunet-service-fs.sock w, | ||
12 | |||
13 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
14 | |||
15 | owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r, | ||
16 | |||
17 | #Librairies | ||
18 | /usr/lib/ld-*.so r, | ||
19 | /usr/lib/libbz2.so.* mr, | ||
20 | /usr/lib/libextractor.so.* mr, | ||
21 | /usr/lib/libidn.so.* mr, | ||
22 | /usr/lib/libpthread-*.so mr, | ||
23 | /usr/lib/librt-*.so mr, | ||
24 | |||
25 | /usr/local/lib/gnunet/libexec/gnunet-service-fs mr, | ||
26 | |||
27 | #Gnunet plugin | ||
28 | /usr/local/lib/gnunet/ r, | ||
29 | /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r, | ||
30 | /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, | ||
31 | /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r, | ||
32 | /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr, | ||
33 | /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r, | ||
34 | /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr, | ||
35 | /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r, | ||
36 | /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr, | ||
37 | /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r, | ||
38 | /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr, | ||
39 | /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r, | ||
40 | /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr, | ||
41 | /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r, | ||
42 | /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr, | ||
43 | |||
44 | #Gnunet librairies | ||
45 | /usr/local/lib/libgnunetats.so.* mr, | ||
46 | /usr/local/lib/libgnunetblock.so.* mr, | ||
47 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
48 | /usr/local/lib/libgnunetcore.so.* mr, | ||
49 | /usr/local/lib/libgnunetdatastore.so.* mr, | ||
50 | /usr/local/lib/libgnunetdht.so.* mr, | ||
51 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
52 | /usr/local/lib/libgnunetfs.so.* mr, | ||
53 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
54 | /usr/local/lib/libgnunethello.so.* mr, | ||
55 | /usr/local/lib/libgnunetmesh.so.* mr, | ||
56 | /usr/local/lib/libgnunetpeerstore.so.* mr, | ||
57 | /usr/local/lib/libgnunetregexblock.so.* mr, | ||
58 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
59 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns deleted file mode 100644 index c7f650d1b..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns +++ /dev/null | |||
@@ -1,29 +0,0 @@ | |||
1 | # Last Modified: Wed Jul 8 15:17:46 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-gns { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | @{HOME}/.config/gnunet.conf r, | ||
9 | |||
10 | #Librairies | ||
11 | /usr/lib/ld-2.21.so r, | ||
12 | /usr/lib/libidn.so.* mr, | ||
13 | |||
14 | /usr/local/lib/gnunet/libexec/gnunet-service-gns mr, | ||
15 | |||
16 | #Gnunet librairies | ||
17 | /usr/local/lib/libgnunetdht.so.* mr, | ||
18 | /usr/local/lib/libgnunetdns.so.* mr, | ||
19 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
20 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
21 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
22 | /usr/local/lib/libgnunetidentity.so.* mr, | ||
23 | /usr/local/lib/libgnunetnamecache.so.* mr, | ||
24 | /usr/local/lib/libgnunetnamestore.so.* mr, | ||
25 | /usr/local/lib/libgnunetrevocation.so.* mr, | ||
26 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
27 | /usr/local/lib/libgnunettun.so.* mr, | ||
28 | /usr/local/lib/libgnunetvpn.so.* mr, | ||
29 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh deleted file mode 100644 index 1496e228f..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh +++ /dev/null | |||
@@ -1,29 +0,0 @@ | |||
1 | # Last Modified: Fri Jul 3 17:37:56 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-mesh { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-mesh mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunetats.so.* mr, | ||
11 | /usr/local/lib/libgnunettransport.so.* mr, | ||
12 | /usr/local/lib/libgnunetcore.so.* mr, | ||
13 | /usr/local/lib/libgnunetdht.so.* mr, | ||
14 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
15 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | ||
16 | /usr/local/lib/libgnunethello.so.* mr, | ||
17 | /usr/local/lib/libgnunetblock.so.* mr, | ||
18 | |||
19 | #Librairies | ||
20 | /usr/lib/librt-*.so mr, | ||
21 | /usr/lib/libpthread-*.so mr, | ||
22 | /usr/lib/ld-*.so r, | ||
23 | |||
24 | @{HOME}/.local/share/gnunet/private_key.ecc rk, | ||
25 | |||
26 | /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w, | ||
27 | |||
28 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, | ||
29 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache deleted file mode 100644 index 6338c9a5b..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache +++ /dev/null | |||
@@ -1,29 +0,0 @@ | |||
1 | # Last Modified: Thu Jul 9 10:01:49 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-namecache { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-namecache mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunetdnsparser.so.* mr, | ||
11 | /usr/local/lib/libgnunetnamecache.so.* mr, | ||
12 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
13 | /usr/local/lib/libgnunetgnsrecord.so.* mr, | ||
14 | |||
15 | #Gnunet plugin | ||
16 | /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r, | ||
17 | /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr, | ||
18 | |||
19 | /var/lib/gnunet/.local/share/gnunet/namecache/ r, | ||
20 | /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk, | ||
21 | /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw, | ||
22 | |||
23 | #Librairies | ||
24 | /usr/lib/libpthread-*.so mr, | ||
25 | /usr/lib/libsqlite3.so.* mr, | ||
26 | /usr/lib/libidn.so.* mr, | ||
27 | /usr/lib/ld-*.so r, | ||
28 | } | ||
29 | |||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo deleted file mode 100644 index 8c7f079b4..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo +++ /dev/null | |||
@@ -1,20 +0,0 @@ | |||
1 | # Last Modified: Wed Jul 8 17:03:17 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /usr/local/share/gnunet/hellos/ r, | ||
9 | /usr/local/share/gnunet/hellos/* r, | ||
10 | |||
11 | /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r, | ||
12 | /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw, | ||
13 | |||
14 | /usr/lib/ld-*.so r, | ||
15 | |||
16 | /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo mr, | ||
17 | |||
18 | /usr/local/lib/libgnunethello.so.* mr, | ||
19 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
20 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex deleted file mode 100644 index e82f0483a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex +++ /dev/null | |||
@@ -1,17 +0,0 @@ | |||
1 | # Last Modified: Tue Jul 21 16:59:39 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-regex { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/lib/ld-*.so r, | ||
8 | |||
9 | /usr/local/lib/gnunet/libexec/gnunet-service-regex mr, | ||
10 | |||
11 | #Gnunet librairies | ||
12 | /usr/local/lib/libgnunetdht.so.* mr, | ||
13 | /usr/local/lib/libgnunetregexblock.so.* mr, | ||
14 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
15 | |||
16 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
17 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice deleted file mode 100644 index e61a20daa..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice +++ /dev/null | |||
@@ -1,12 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 15:48:05 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/lib/ld-*.so r, | ||
8 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr, | ||
9 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
10 | /usr/local/lib/libgnunetset.so.* mr, | ||
11 | |||
12 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob deleted file mode 100644 index c48ac50dc..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob +++ /dev/null | |||
@@ -1,11 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 15:48:05 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/lib/ld-*.so r, | ||
8 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr, | ||
9 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
10 | /usr/local/lib/libgnunetset.so.* mr, | ||
11 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set deleted file mode 100644 index d711f132c..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set +++ /dev/null | |||
@@ -1,17 +0,0 @@ | |||
1 | # Last Modified: Wed Jul 8 10:52:48 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-set { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /usr/local/lib/gnunet/libexec/gnunet-service-set mr, | ||
8 | |||
9 | #Gnunet librairies | ||
10 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
11 | /usr/local/lib/libgnunetcore.so.* mr, | ||
12 | /usr/local/lib/libgnunetmesh.so.* mr, | ||
13 | /usr/local/lib/libgnunetblock.so.* mr, | ||
14 | |||
15 | #Librairies | ||
16 | /usr/lib/ld-*.so r, | ||
17 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics deleted file mode 100644 index 1ff8a8fd1..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics +++ /dev/null | |||
@@ -1,15 +0,0 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-statistics { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /var/lib/gnunet/.local/share/gnunet/statistics.dat rw, | ||
9 | |||
10 | /usr/lib/ld-*.so r, | ||
11 | |||
12 | /usr/local/lib/gnunet/libexec/gnunet-service-statistics mr, | ||
13 | |||
14 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
15 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed deleted file mode 100644 index de9ad2675..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed +++ /dev/null | |||
@@ -1,35 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 27 11:02:46 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | /etc/gai.conf r, | ||
8 | |||
9 | /tmp/gnunet-system-runtime/ w, | ||
10 | /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w, | ||
11 | /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w, | ||
12 | |||
13 | /usr/lib/ld-*.so r, | ||
14 | |||
15 | /dev/null r, | ||
16 | |||
17 | /usr/local/lib/gnunet/libexec/gnunet-* r, | ||
18 | |||
19 | /usr/local/lib/gnunet/libexec/ r, | ||
20 | /usr/local/lib/gnunet/libexec/gnunet-service-arm Px, | ||
21 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed mr, | ||
22 | |||
23 | #Gnunet librairies | ||
24 | /usr/local/lib/libgnunetarm.so.* mr, | ||
25 | /usr/local/lib/libgnunetats.so.* mr, | ||
26 | /usr/local/lib/libgnunetcore.so.* mr, | ||
27 | /usr/local/lib/libgnunethello.so.* mr, | ||
28 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
29 | /usr/local/lib/libgnunettestbed.so.* mr, | ||
30 | /usr/local/lib/libgnunettesting.so.* mr, | ||
31 | /usr/local/lib/libgnunettransport.so.* mr, | ||
32 | |||
33 | /usr/local/share/gnunet/testing_hostkeys.ecc r, | ||
34 | |||
35 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport deleted file mode 100644 index b50541f4c..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport +++ /dev/null | |||
@@ -1,28 +0,0 @@ | |||
1 | # Last Modified: Thu Jul 9 10:16:30 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-transport { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, | ||
9 | |||
10 | /usr/lib/ld-*.so r, | ||
11 | |||
12 | /usr/local/lib/gnunet/libexec/gnunet-service-transport mr, | ||
13 | |||
14 | #Gnunet plugin | ||
15 | /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.la r, | ||
16 | /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.so mr, | ||
17 | /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.la r, | ||
18 | /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.so mr, | ||
19 | |||
20 | #Gnunet librairies | ||
21 | /usr/local/lib/libgnunetats.so.* mr, | ||
22 | /usr/local/lib/libgnunetfragmentation.so.* mr, | ||
23 | /usr/local/lib/libgnunethello.so.* mr, | ||
24 | /usr/local/lib/libgnunetnat.so.* mr, | ||
25 | /usr/local/lib/libgnunetpeerinfo.so.* mr, | ||
26 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
27 | /usr/local/lib/libgnunettransport.so.* mr, | ||
28 | } | ||
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn deleted file mode 100644 index 48fda8563..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn +++ /dev/null | |||
@@ -1,26 +0,0 @@ | |||
1 | # Last Modified: Mon Jul 20 11:20:57 2015 | ||
2 | #include <tunables/global> | ||
3 | |||
4 | /usr/local/lib/gnunet/libexec/gnunet-service-vpn { | ||
5 | #include <abstractions/gnunet-common> | ||
6 | |||
7 | capability setuid, | ||
8 | capability net_admin, | ||
9 | |||
10 | /dev/net/tun rw, | ||
11 | |||
12 | /usr/local/lib/gnunet/libexec/gnunet-service-vpn mr, | ||
13 | |||
14 | #Librairies | ||
15 | /usr/lib/ld-*.so r, | ||
16 | |||
17 | #Gnunet helper | ||
18 | /usr/local/lib/gnunet/libexec/gnunet-helper-vpn Px, | ||
19 | |||
20 | #Gnunet librairies | ||
21 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
22 | /usr/local/lib/libgnunetmesh.so.* mr, | ||
23 | /usr/local/lib/libgnunetregex.so.* mr, | ||
24 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
25 | /usr/local/lib/libgnunettun.so.* mr, | ||
26 | } | ||