aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJulien Morvan <julien.morvan@outlook.com>2015-07-31 13:53:26 +0000
committerJulien Morvan <julien.morvan@outlook.com>2015-07-31 13:53:26 +0000
commit847e9575ed85eadb979bc416afec7cf898cf00d1 (patch)
tree4fa7f2f3d62a1dfbe14e160879a838a56ddd14ae
parent18d3aebbb66f453d5b57bb28dd284508bb938332 (diff)
downloadgnunet-847e9575ed85eadb979bc416afec7cf898cf00d1.tar.gz
gnunet-847e9575ed85eadb979bc416afec7cf898cf00d1.zip
-rw-r--r--contrib/apparmor/gnunet-arm (renamed from contrib/apparmor/usr.local.bin.gnunet-arm)11
-rw-r--r--contrib/apparmor/gnunet-daemon-exit24
-rw-r--r--contrib/apparmor/gnunet-daemon-hostlist (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist)19
-rw-r--r--contrib/apparmor/gnunet-daemon-latency-logger (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger)9
-rw-r--r--contrib/apparmor/gnunet-daemon-pt26
-rw-r--r--contrib/apparmor/gnunet-daemon-regexprofiler13
-rw-r--r--contrib/apparmor/gnunet-daemon-testbed-blacklist13
-rw-r--r--contrib/apparmor/gnunet-daemon-testbed-underlay23
-rw-r--r--contrib/apparmor/gnunet-daemon-topology27
-rw-r--r--contrib/apparmor/gnunet-dns2gns26
-rw-r--r--contrib/apparmor/gnunet-gns-proxy (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy)13
-rw-r--r--contrib/apparmor/gnunet-helper-audio-playback10
-rw-r--r--contrib/apparmor/gnunet-helper-audio-record10
-rw-r--r--contrib/apparmor/gnunet-helper-dns (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns)8
-rw-r--r--contrib/apparmor/gnunet-helper-exit12
-rw-r--r--contrib/apparmor/gnunet-helper-fs-publish (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish)5
-rw-r--r--contrib/apparmor/gnunet-helper-nat-client12
-rw-r--r--contrib/apparmor/gnunet-helper-nat-server12
-rw-r--r--contrib/apparmor/gnunet-helper-testbed37
-rw-r--r--contrib/apparmor/gnunet-helper-transport-wlan12
-rw-r--r--contrib/apparmor/gnunet-helper-transport-wlan-dummy10
-rw-r--r--contrib/apparmor/gnunet-helper-vpn (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn)9
-rw-r--r--contrib/apparmor/gnunet-namestore-fcfsd (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd)15
-rw-r--r--contrib/apparmor/gnunet-service-arm109
-rw-r--r--contrib/apparmor/gnunet-service-ats20
-rw-r--r--contrib/apparmor/gnunet-service-cadet26
-rw-r--r--contrib/apparmor/gnunet-service-conversation28
-rw-r--r--contrib/apparmor/gnunet-service-core20
-rw-r--r--contrib/apparmor/gnunet-service-datastore (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore)13
-rw-r--r--contrib/apparmor/gnunet-service-dht57
-rw-r--r--contrib/apparmor/gnunet-service-dns20
-rw-r--r--contrib/apparmor/gnunet-service-fs60
-rw-r--r--contrib/apparmor/gnunet-service-gns30
-rw-r--r--contrib/apparmor/gnunet-service-identity (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity)7
-rw-r--r--contrib/apparmor/gnunet-service-mesh30
-rw-r--r--contrib/apparmor/gnunet-service-namecache30
-rw-r--r--contrib/apparmor/gnunet-service-namestore (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore)19
-rw-r--r--contrib/apparmor/gnunet-service-nse (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse)11
-rw-r--r--contrib/apparmor/gnunet-service-peerinfo21
-rw-r--r--contrib/apparmor/gnunet-service-peerstore (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore)11
-rw-r--r--contrib/apparmor/gnunet-service-regex18
-rw-r--r--contrib/apparmor/gnunet-service-resolver (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver)5
-rw-r--r--contrib/apparmor/gnunet-service-revocation (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation)13
-rw-r--r--contrib/apparmor/gnunet-service-scalarproduct-alice13
-rw-r--r--contrib/apparmor/gnunet-service-scalarproduct-bob14
-rw-r--r--contrib/apparmor/gnunet-service-set18
-rw-r--r--contrib/apparmor/gnunet-service-statistics16
-rw-r--r--contrib/apparmor/gnunet-service-template (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template)5
-rw-r--r--contrib/apparmor/gnunet-service-testbed36
-rw-r--r--contrib/apparmor/gnunet-service-testbed-logger (renamed from contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger)5
-rw-r--r--contrib/apparmor/gnunet-service-transport29
-rw-r--r--contrib/apparmor/gnunet-service-vpn28
-rw-r--r--contrib/apparmor/tunables/gnunet1
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit23
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt25
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler12
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist12
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay22
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology26
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns25
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback9
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record9
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit11
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client11
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server11
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed36
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan11
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy9
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm109
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats19
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet21
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation27
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core19
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht56
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns19
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs59
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns29
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh29
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache29
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo20
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex17
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice12
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob11
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set17
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics15
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed35
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport28
-rw-r--r--contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn26
88 files changed, 991 insertions, 927 deletions
diff --git a/contrib/apparmor/usr.local.bin.gnunet-arm b/contrib/apparmor/gnunet-arm
index 83f758238..d969f6af1 100644
--- a/contrib/apparmor/usr.local.bin.gnunet-arm
+++ b/contrib/apparmor/gnunet-arm
@@ -1,14 +1,15 @@
1#/usr/local/lib Last Modified: Fri Jul 3 14:48:33 2015 1#Last Modified: Fri Jul 3 14:48:33 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/bin/gnunet-arm { 5profile @{GNUNET_PREFIX}/bin/gnunet-arm {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/local/bin/gnunet-arm mr, 8 @{GNUNET_PREFIX}/bin/gnunet-arm mr,
8 9
9 /usr/lib/gconv/gconv-modules r, 10 /usr/lib/gconv/gconv-modules r,
10 11
11 /usr/local/lib/libgnunetarm.so.* mr, 12 @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr,
12 13
13 /dev/null ra, 14 /dev/null ra,
14 15
@@ -18,7 +19,7 @@
18 /usr/share/locale/fr/LC_MESSAGES/libc.mo r, 19 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
19 20
20 #Gnunet service 21 #Gnunet service
21 /usr/local/lib/gnunet/libexec/gnunet-service-arm Px , 22 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px ,
22 23
23 /tmp/gnunet-*-runtime/ rw, 24 /tmp/gnunet-*-runtime/ rw,
24 /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, 25 /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw,
diff --git a/contrib/apparmor/gnunet-daemon-exit b/contrib/apparmor/gnunet-daemon-exit
new file mode 100644
index 000000000..95f1c57d8
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-exit
@@ -0,0 +1,24 @@
1# Last Modified: Mon Jul 27 15:57:50 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit {
6 #include <abstractions/gnunet-common>
7
8 /usr/lib/ld-*.so r,
9
10 /usr/lib/locale/locale-archive r,
11
12 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit mr,
13
14 #Gnunet librairies
15 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
16 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
21
22 /usr/share/locale/locale.alias r,
23
24}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist b/contrib/apparmor/gnunet-daemon-hostlist
index d9d32cb61..82afb3848 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist
+++ b/contrib/apparmor/gnunet-daemon-hostlist
@@ -1,7 +1,8 @@
1# Last Modified: Fri Jul 10 10:43:55 2015 1# Last Modified: Fri Jul 10 10:43:55 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /etc/gai.conf r, 8 /etc/gai.conf r,
@@ -49,16 +50,16 @@
49 50
50 /usr/lib/locale/locale-archive r, 51 /usr/lib/locale/locale-archive r,
51 52
52 /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist mr, 53 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist mr,
53 54
54 #Gnunet librairies 55 #Gnunet librairies
55 /usr/local/lib/libgnunetats.so.* mr, 56 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
56 /usr/local/lib/libgnunetcore.so.* mr, 57 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
57 /usr/local/lib/libgnunethello.so.* mr, 58 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
58 /usr/local/lib/libgnunetpeerinfo.so.* mr, 59 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
59 /usr/local/lib/libgnunetstatistics.so.* mr, 60 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
60 /usr/local/lib/libgnunettransport.so.* mr, 61 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
61 /usr/local/lib/libgnunetutil.so.* mr, 62 @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr,
62 63
63 /usr/share/locale/fr/LC_MESSAGES/libc.mo r, 64 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
64 /usr/share/locale/locale.alias r, 65 /usr/share/locale/locale.alias r,
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger b/contrib/apparmor/gnunet-daemon-latency-logger
index a25852bf8..38053ffec 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger
+++ b/contrib/apparmor/gnunet-daemon-latency-logger
@@ -1,16 +1,17 @@
1# Last Modified: Mon Jul 27 16:25:08 2015 1# Last Modified: Mon Jul 27 16:25:08 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/lib/ld-*.so r, 8 /usr/lib/ld-*.so r,
8 /usr/lib/libpthread-*.so mr, 9 /usr/lib/libpthread-*.so mr,
9 /usr/lib/libsqlite3.so.* mr, 10 /usr/lib/libsqlite3.so.* mr,
10 /usr/lib/locale/locale-archive r, 11 /usr/lib/locale/locale-archive r,
11 /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger mr, 12 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger mr,
12 /usr/local/lib/libgnunetats.so.* mr, 13 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
13 /usr/local/lib/libgnunethello.so.* mr, 14 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
14 /usr/share/locale/locale.alias r, 15 /usr/share/locale/locale.alias r,
15 16
16} 17}
diff --git a/contrib/apparmor/gnunet-daemon-pt b/contrib/apparmor/gnunet-daemon-pt
new file mode 100644
index 000000000..f14cf2922
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-pt
@@ -0,0 +1,26 @@
1# Last Modified: Mon Jul 20 17:48:20 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt {
6 #include <abstractions/gnunet-common>
7
8 #Librairies
9 /usr/lib/ld-*.so r,
10 /usr/lib/libidn.so.* mr,
11
12 /usr/lib/locale/locale-archive r,
13
14 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt mr,
15
16 #Gnunet librairies
17 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr,
24
25 /usr/share/locale/locale.alias r,
26}
diff --git a/contrib/apparmor/gnunet-daemon-regexprofiler b/contrib/apparmor/gnunet-daemon-regexprofiler
new file mode 100644
index 000000000..eface26d1
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-regexprofiler
@@ -0,0 +1,13 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr,
9 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
10 @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr,
11 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
12
13}
diff --git a/contrib/apparmor/gnunet-daemon-testbed-blacklist b/contrib/apparmor/gnunet-daemon-testbed-blacklist
new file mode 100644
index 000000000..9dcfe321b
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-testbed-blacklist
@@ -0,0 +1,13 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr,
9 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
10 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
11 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
12
13}
diff --git a/contrib/apparmor/gnunet-daemon-testbed-underlay b/contrib/apparmor/gnunet-daemon-testbed-underlay
new file mode 100644
index 000000000..f11dcbca9
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-testbed-underlay
@@ -0,0 +1,23 @@
1# Last Modified: Mon Jul 27 16:37:03 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay {
6 #include <abstractions/gnunet-common>
7
8 #Librairies
9 /usr/lib/ld-*.so r,
10 /usr/lib/libpthread-*.so mr,
11 /usr/lib/libsqlite3.so.* mr,
12
13 /usr/lib/locale/locale-archive r,
14
15 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr,
16
17 #Gnunet librairies
18 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
21
22 /usr/share/locale/locale.alias r,
23}
diff --git a/contrib/apparmor/gnunet-daemon-topology b/contrib/apparmor/gnunet-daemon-topology
new file mode 100644
index 000000000..b8b03082c
--- /dev/null
+++ b/contrib/apparmor/gnunet-daemon-topology
@@ -0,0 +1,27 @@
1# Last Modified: Fri Jul 3 17:37:12 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunetfriends.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
15 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
16 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
18
19 /usr/lib/ld-*.so r,
20
21 /usr/lib//locale/locale-archive r,
22
23 /usr/lib/gconv/gconv-modules r,
24
25 /usr/share/locale/locale.alias r,
26 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
27}
diff --git a/contrib/apparmor/gnunet-dns2gns b/contrib/apparmor/gnunet-dns2gns
new file mode 100644
index 000000000..c860d56b0
--- /dev/null
+++ b/contrib/apparmor/gnunet-dns2gns
@@ -0,0 +1,26 @@
1# Last Modified: Tue Jul 21 16:45:05 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns {
6 #include <abstractions/gnunet-common>
7
8 #Librairies
9 /usr/lib/ld-*.so r,
10 /usr/lib/libidn.so.* mr,
11
12 /usr/lib/locale/locale-archive r,
13
14 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns mr,
15
16 #Gnunet librairies
17 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
24
25 /usr/share/locale/locale.alias r,
26}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy b/contrib/apparmor/gnunet-gns-proxy
index 62efa7744..5d24b3a5e 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy
+++ b/contrib/apparmor/gnunet-gns-proxy
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 21 16:35:07 2015 1# Last Modified: Tue Jul 21 16:35:07 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-gns-proxy { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /etc/ssl/openssl.cnf r, 8 /etc/ssl/openssl.cnf r,
@@ -36,13 +37,13 @@
36 37
37 /usr/lib/locale/locale-archive r, 38 /usr/lib/locale/locale-archive r,
38 39
39 /usr/local/lib/gnunet/libexec/gnunet-gns-proxy mr, 40 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy mr,
40 41
41 #Gnunet librairies 42 #Gnunet librairies
42 /usr/local/lib/libgnunetdnsparser.so.* mr, 43 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
43 /usr/local/lib/libgnunetgns.so.* mr, 44 @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr,
44 /usr/local/lib/libgnunetgnsrecord.so.* mr, 45 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
45 /usr/local/lib/libgnunetidentity.so.* mr, 46 @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr,
46 47
47 /usr/share/locale/fr/LC_MESSAGES/libc.mo r, 48 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
48 /usr/share/locale/locale.alias r, 49 /usr/share/locale/locale.alias r,
diff --git a/contrib/apparmor/gnunet-helper-audio-playback b/contrib/apparmor/gnunet-helper-audio-playback
new file mode 100644
index 000000000..b98b22b69
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-audio-playback
@@ -0,0 +1,10 @@
1# Last Modified: Tue Jul 28 11:46:24 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) {
6 #include <abstractions/gnunet-common>
7 #include <abstractions/gnunet-libaudio>
8
9 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback mr,
10}
diff --git a/contrib/apparmor/gnunet-helper-audio-record b/contrib/apparmor/gnunet-helper-audio-record
new file mode 100644
index 000000000..f85b83d9f
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-audio-record
@@ -0,0 +1,10 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) {
6 #include <abstractions/gnunet-common>
7 #include <abstractions/gnunet-libaudio>
8
9 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record mr,
10}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns b/contrib/apparmor/gnunet-helper-dns
index 960cf09b5..b6a102585 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns
+++ b/contrib/apparmor/gnunet-helper-dns
@@ -1,9 +1,11 @@
1# Last Modified: Mon Jul 27 15:24:34 2015 1# Last Modified: Mon Jul 27 15:24:34 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
8 #Capability
7 capability net_admin, 9 capability net_admin,
8 capability net_raw, 10 capability net_raw,
9 capability setuid, 11 capability setuid,
@@ -25,11 +27,11 @@
25 /usr/bin/sysctl rix, 27 /usr/bin/sysctl rix,
26 /usr/bin/xtables-multi rix, 28 /usr/bin/xtables-multi rix,
27 29
30 #Librairies
28 /usr/lib/iptables/libxt_MARK.so mr, 31 /usr/lib/iptables/libxt_MARK.so mr,
29 /usr/lib/iptables/libxt_owner.so mr, 32 /usr/lib/iptables/libxt_owner.so mr,
30 /usr/lib/iptables/libxt_standard.so mr, 33 /usr/lib/iptables/libxt_standard.so mr,
31 /usr/lib/iptables/libxt_udp.so mr, 34 /usr/lib/iptables/libxt_udp.so mr,
32
33 /usr/lib/ld-*.so r, 35 /usr/lib/ld-*.so r,
34 /usr/lib/libip4tc.so.* mr, 36 /usr/lib/libip4tc.so.* mr,
35 /usr/lib/libip6tc.so.* mr, 37 /usr/lib/libip6tc.so.* mr,
@@ -39,5 +41,5 @@
39 41
40 /usr/lib/locale/locale-archive r, 42 /usr/lib/locale/locale-archive r,
41 43
42 /usr/local/lib/gnunet/libexec/gnunet-helper-dns mr, 44 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns mr,
43} 45}
diff --git a/contrib/apparmor/gnunet-helper-exit b/contrib/apparmor/gnunet-helper-exit
new file mode 100644
index 000000000..d185f5b80
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-exit
@@ -0,0 +1,12 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 capability setuid,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit mr,
11
12}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish b/contrib/apparmor/gnunet-helper-fs-publish
index ad0a142f7..ccf0cb513 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish
+++ b/contrib/apparmor/gnunet-helper-fs-publish
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 28 11:42:58 2015 1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/lib/libbz2.so.* mr, 8 /usr/lib/libbz2.so.* mr,
@@ -9,5 +10,5 @@
9 /usr/lib/libpthread-*.so mr, 10 /usr/lib/libpthread-*.so mr,
10 /usr/lib/librt-*.so mr, 11 /usr/lib/librt-*.so mr,
11 12
12 /usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish mr, 13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish mr,
13} 14}
diff --git a/contrib/apparmor/gnunet-helper-nat-client b/contrib/apparmor/gnunet-helper-nat-client
new file mode 100644
index 000000000..19a563878
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-nat-client
@@ -0,0 +1,12 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 capability setuid,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client mr,
11
12}
diff --git a/contrib/apparmor/gnunet-helper-nat-server b/contrib/apparmor/gnunet-helper-nat-server
new file mode 100644
index 000000000..594d2de7a
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-nat-server
@@ -0,0 +1,12 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 capability setuid,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server mr,
11
12}
diff --git a/contrib/apparmor/gnunet-helper-testbed b/contrib/apparmor/gnunet-helper-testbed
new file mode 100644
index 000000000..22ac13347
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-testbed
@@ -0,0 +1,37 @@
1# Last Modified: Mon Jul 27 11:02:37 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 /dev/null rw,
9
10 /etc/gai.conf r,
11
12 /usr/lib/ld-*.so r,
13
14 /usr/lib/locale/locale-archive r,
15
16 /usr/share/locale/locale.alias r,
17 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
18
19 /usr/lib/gconv/gconv-modules r,
20
21 @{GNUNET_PREFIX}/lib/gnunet/libexec/ r,
22 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed mr,
23 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm r,
24 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px,
25
26 #Gnunet librairies
27 @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr,
28 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
29 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
30 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
31 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
32 @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr,
33 @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr,
34 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
35
36 @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r,
37}
diff --git a/contrib/apparmor/gnunet-helper-transport-wlan b/contrib/apparmor/gnunet-helper-transport-wlan
new file mode 100644
index 000000000..0f1d5cf57
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-transport-wlan
@@ -0,0 +1,12 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 capability setuid,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan mr,
11
12}
diff --git a/contrib/apparmor/gnunet-helper-transport-wlan-dummy b/contrib/apparmor/gnunet-helper-transport-wlan-dummy
new file mode 100644
index 000000000..9ad58e5d0
--- /dev/null
+++ b/contrib/apparmor/gnunet-helper-transport-wlan-dummy
@@ -0,0 +1,10 @@
1# Last Modified: Tue Jul 28 11:36:52 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr,
9
10}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn b/contrib/apparmor/gnunet-helper-vpn
index 3f9051db3..9be198d76 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn
+++ b/contrib/apparmor/gnunet-helper-vpn
@@ -1,16 +1,21 @@
1# Last Modified: Mon Jul 27 11:06:22 2015 1# Last Modified: Mon Jul 27 11:06:22 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) {
5 6
7 #Capability
6 capability net_admin, 8 capability net_admin,
7 capability setuid, 9 capability setuid,
8 10
9 /dev/net/tun rw, 11 /dev/net/tun rw,
10 /etc/ld.so.cache r, 12 /etc/ld.so.cache r,
13
14 #Librairies
11 /usr/lib/ld-*.so r, 15 /usr/lib/ld-*.so r,
12 /usr/lib/libc-*.so mr, 16 /usr/lib/libc-*.so mr,
13 /usr/lib/libm-*.so mr, 17 /usr/lib/libm-*.so mr,
14 /usr/local/lib/gnunet/libexec/gnunet-helper-vpn mr, 18
19 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn mr,
15 20
16} 21}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd b/contrib/apparmor/gnunet-namestore-fcfsd
index 43527ae3b..9c57801a9 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd
+++ b/contrib/apparmor/gnunet-namestore-fcfsd
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 21 17:25:12 2015 1# Last Modified: Tue Jul 21 17:25:12 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 #Librairies 8 #Librairies
@@ -19,12 +20,12 @@
19 20
20 /usr/lib/locale/locale-archive r, 21 /usr/lib/locale/locale-archive r,
21 22
22 /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd mr, 23 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd mr,
23 24
24 #Gnunet librairies 25 #Gnunet librairies
25 /usr/local/lib/libgnunetdnsparser.so.* mr, 26 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
26 /usr/local/lib/libgnunetgnsrecord.so.* mr, 27 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
27 /usr/local/lib/libgnunetidentity.so.* mr, 28 @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr,
28 /usr/local/lib/libgnunetnamestore.so.* mr, 29 @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr,
29 /usr/local/lib/libgnunetstatistics.so.* mr, 30 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
30} 31}
diff --git a/contrib/apparmor/gnunet-service-arm b/contrib/apparmor/gnunet-service-arm
new file mode 100644
index 000000000..5428c3ca9
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-arm
@@ -0,0 +1,109 @@
1# Last Modified: Thu Jul 9 10:27:23 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm {
6 #include <abstractions/gnunet-common>
7
8 /dev/null ra,
9
10 /tmp/gnunet-*-runtime/ rw,
11 /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw,
12 /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw,
13 /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw,
14 /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw,
15
16 /tmp/gnunet-system-runtime/ rw,
17 /tmp/gnunet-system-runtime/gnunet-service-*.sock rw,
18 /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw,
19 /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw,
20
21 /var/lib/gnunet/.local/share/gnunet/ r,
22 /var/lib/gnunet/.local/share/gnunet/revocation.dat r,
23 /var/lib/gnunet/.local/share/gnunet/peerstore/ a,
24 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk,
25 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw,
26 /var/lib/gnunet/.config/gnunet.conf r,
27
28 #Librairies
29 /usr/lib/ld-*.so r,
30 /usr/lib/libpthread-*.so mr,
31
32 /usr/lib/libsqlite3.so.* mr,
33
34 /usr/lib/locale/locale-archive r,
35
36 /usr/share/locale/locale-alias r,
37
38 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm mr,
39
40 @{GNUNET_PREFIX}/lib/gnunet/ r,
41
42 @{GNUNET_PREFIX}/lib/gnunet/libexec/ r,
43
44 #Gnunet daemon
45 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit Px,
46 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist Px,
47 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger Px,
48 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px,
49 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology Px,
50 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt Px,
51
52 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns Px,
53
54 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy Px,
55
56 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd Px,
57
58 #Gnunet service
59 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats Px,
60 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet Px,
61 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core Px,
62 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation Px,
63 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore Px,
64 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht Px,
65 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns Px,
66 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs Px,
67 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns Px,
68 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity Px,
69 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh Px,
70 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache Px,
71 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore Px,
72 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse Px,
73 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo Px,
74 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore Px,
75 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex Px,
76 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver Px,
77 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation Px,
78 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set Px,
79 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px,
80 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px,
81 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics Px,
82 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template Px,
83 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px,
84 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger Px,
85 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport Px,
86 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn Px,
87
88 #Gnunet helper
89 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns r,
90
91 #Gnunet librairies
92 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
93 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
94 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
95 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
96 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* r,
97 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
98 @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* r,
99 @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr,
100 @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
101 @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr,
102 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
103 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
104 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
105
106 #Gnunet plugin
107 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r,
108 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr,
109}
diff --git a/contrib/apparmor/gnunet-service-ats b/contrib/apparmor/gnunet-service-ats
new file mode 100644
index 000000000..53e849517
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-ats
@@ -0,0 +1,20 @@
1# Last Modified: Wed Jul 8 10:49:34 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
14
15 #Gnunet plugin
16 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.la r,
17 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.so mr,
18
19 /usr/lib/ld-*.so r,
20}
diff --git a/contrib/apparmor/gnunet-service-cadet b/contrib/apparmor/gnunet-service-cadet
new file mode 100644
index 000000000..07def08ad
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-cadet
@@ -0,0 +1,26 @@
1# Last Modified: Mon Jul 27 11:09:34 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet {
6 #include <abstractions/gnunet-common>
7
8 #Librairies
9 /usr/lib/ld-*.so r,
10 /usr/lib/libpthread-*.so mr,
11 /usr/lib/librt-*.so mr,
12
13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet mr,
14
15 #Gnunet librairies
16 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
24
25 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
26}
diff --git a/contrib/apparmor/gnunet-service-conversation b/contrib/apparmor/gnunet-service-conversation
new file mode 100644
index 000000000..d43c6d7a4
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-conversation
@@ -0,0 +1,28 @@
1# Last Modified: Tue Jul 21 16:53:39 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation {
6 #include <abstractions/gnunet-common>
7
8 #Librairies
9 /usr/lib/ld-*.so r,
10 /usr/lib/libidn.so.* mr,
11
12 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation mr,
13
14 #Gnunet librairies
15 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
16 @{GNUNET_PREFIX}/lib/libgnunetconversation.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetmicrophone.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr,
24 @{GNUNET_PREFIX}/lib/libgnunetspeaker.so.* mr,
25 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
26
27 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
28}
diff --git a/contrib/apparmor/gnunet-service-core b/contrib/apparmor/gnunet-service-core
new file mode 100644
index 000000000..24fdd641c
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-core
@@ -0,0 +1,20 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core {
7 #include <abstractions/gnunet-common>
8
9 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
10
11 /usr/lib/ld-*.so r,
12
13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core mr,
14
15 #Gnunet librairies
16 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
20}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore b/contrib/apparmor/gnunet-service-datastore
index b38121e65..363946910 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore
+++ b/contrib/apparmor/gnunet-service-datastore
@@ -1,8 +1,9 @@
1# Last Modified: Thu Jul 9 10:16:30 2015 1# Last Modified: Thu Jul 9 10:16:30 2015
2 2
3#include <tunables/global> 3#include <tunables/global>
4#include <tunables/gnunet>
4 5
5/usr/local/lib/gnunet/libexec/gnunet-service-datastore { 6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore {
6 #include <abstractions/gnunet-common> 7 #include <abstractions/gnunet-common>
7 8
8 /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw, 9 /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw,
@@ -14,13 +15,13 @@
14 /usr/lib/libpthread-*.so mr, 15 /usr/lib/libpthread-*.so mr,
15 /usr/lib/libsqlite3.so.* mr, 16 /usr/lib/libsqlite3.so.* mr,
16 17
17 /usr/local/lib/gnunet/libexec/gnunet-service-datastore mr, 18 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore mr,
18 19
19 #Gnunet plugin 20 #Gnunet plugin
20 /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r, 21 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r,
21 /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr, 22 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr,
22 23
23 #Gnunet Librairies 24 #Gnunet Librairies
24 /usr/local/lib/libgnunetstatistics.so.* mr, 25 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
25 /usr/local/lib/libgnunetutil.so.* mr, 26 @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr,
26} 27}
diff --git a/contrib/apparmor/gnunet-service-dht b/contrib/apparmor/gnunet-service-dht
new file mode 100644
index 000000000..67c45beb8
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-dht
@@ -0,0 +1,57 @@
1# Last Modified: Fri Jul 3 17:37:39 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
15 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
16 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetdatacache.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
24 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
25
26 #Gnunet plugin
27 @{GNUNET_PREFIX}/lib/gnunet/ r,
28 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r,
29 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr,
30 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r,
31 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr,
32 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r,
33 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr,
34 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r,
35 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr,
36 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r,
37 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr,
38 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr,
39 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r,
40 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr,
41 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r,
42 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr,
43 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.la r,
44 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.so mr,
45
46 #Librairies
47 /usr/lib/ld-*.so r,
48 /usr/lib/libextractor.so.* mr,
49 /usr/lib/libbz2.so.* mr,
50 /usr/lib/librt-*.so mr,
51 /usr/lib/libpthread-*.so mr,
52 /usr/lib/libidn.so.* mr,
53
54 /tmp/gnunet-system-runtime/gnunet-service-dht.sock w,
55
56 /tmp/gnunet-datacachebloom* rw,
57}
diff --git a/contrib/apparmor/gnunet-service-dns b/contrib/apparmor/gnunet-service-dns
new file mode 100644
index 000000000..ba8a31ce1
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-dns
@@ -0,0 +1,20 @@
1# Last Modified: Mon Jul 27 15:18:30 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns {
6 #include <abstractions/gnunet-common>
7
8 capability setgid,
9
10 /usr/lib/ld-*.so r,
11
12 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns Px,
13
14 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns mr,
15
16 #Gnunet librairies
17 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
20}
diff --git a/contrib/apparmor/gnunet-service-fs b/contrib/apparmor/gnunet-service-fs
new file mode 100644
index 000000000..3d792e44d
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-fs
@@ -0,0 +1,60 @@
1# Last Modified: Wed Jul 8 10:52:48 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs {
7 #include <abstractions/gnunet-common>
8
9 /etc/gnunet.conf r,
10 @{HOME}/.config/gnunet.conf r,
11
12 /tmp/gnunet-system-runtime/gnunet-service-fs.sock w,
13
14 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
15
16 owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r,
17
18 #Librairies
19 /usr/lib/ld-*.so r,
20 /usr/lib/libbz2.so.* mr,
21 /usr/lib/libextractor.so.* mr,
22 /usr/lib/libidn.so.* mr,
23 /usr/lib/libpthread-*.so mr,
24 /usr/lib/librt-*.so mr,
25
26 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs mr,
27
28 #Gnunet plugin
29 @{GNUNET_PREFIX}/lib/gnunet/ r,
30 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r,
31 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr,
32 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r,
33 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr,
34 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r,
35 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr,
36 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r,
37 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr,
38 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r,
39 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr,
40 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r,
41 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr,
42 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r,
43 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr,
44
45 #Gnunet librairies
46 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
47 @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr,
48 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
49 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
50 @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr,
51 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
52 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
53 @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr,
54 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
55 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
56 @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
57 @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr,
58 @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr,
59 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
60}
diff --git a/contrib/apparmor/gnunet-service-gns b/contrib/apparmor/gnunet-service-gns
new file mode 100644
index 000000000..b271eecba
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-gns
@@ -0,0 +1,30 @@
1# Last Modified: Wed Jul 8 15:17:46 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns {
7 #include <abstractions/gnunet-common>
8
9 @{HOME}/.config/gnunet.conf r,
10
11 #Librairies
12 /usr/lib/ld-2.21.so r,
13 /usr/lib/libidn.so.* mr,
14
15 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns mr,
16
17 #Gnunet librairies
18 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
19 @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
21 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
22 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr,
24 @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr,
25 @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr,
26 @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr,
27 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
28 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
29 @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr,
30}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity b/contrib/apparmor/gnunet-service-identity
index 7e550acb9..8cf0f99b6 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity
+++ b/contrib/apparmor/gnunet-service-identity
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 21 11:51:29 2015 1# Last Modified: Tue Jul 21 11:51:29 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-identity { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /tmp/gnunet-*-runtime/ a, 8 /tmp/gnunet-*-runtime/ a,
@@ -11,8 +12,8 @@
11 /var/lib/gnunet/.local/share/gnunet/identity/ a, 12 /var/lib/gnunet/.local/share/gnunet/identity/ a,
12 /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra, 13 /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra,
13 14
14 /usr/local/lib/gnunet/libexec/gnunet-service-identity mr, 15 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity mr,
15 /usr/local/lib/libgnunetstatistics.so.* mr, 16 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
16 17
17 @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw, 18 @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw,
18 19
diff --git a/contrib/apparmor/gnunet-service-mesh b/contrib/apparmor/gnunet-service-mesh
new file mode 100644
index 000000000..91c3044ae
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-mesh
@@ -0,0 +1,30 @@
1# Last Modified: Fri Jul 3 17:37:56 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
15 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
16 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
17 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
18 @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr,
19
20 #Librairies
21 /usr/lib/librt-*.so mr,
22 /usr/lib/libpthread-*.so mr,
23 /usr/lib/ld-*.so r,
24
25 @{HOME}/.local/share/gnunet/private_key.ecc rk,
26
27 /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w,
28
29 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk,
30}
diff --git a/contrib/apparmor/gnunet-service-namecache b/contrib/apparmor/gnunet-service-namecache
new file mode 100644
index 000000000..8b5f21103
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-namecache
@@ -0,0 +1,30 @@
1# Last Modified: Thu Jul 9 10:01:49 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
15
16 #Gnunet plugin
17 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r,
18 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr,
19
20 /var/lib/gnunet/.local/share/gnunet/namecache/ r,
21 /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk,
22 /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw,
23
24 #Librairies
25 /usr/lib/libpthread-*.so mr,
26 /usr/lib/libsqlite3.so.* mr,
27 /usr/lib/libidn.so.* mr,
28 /usr/lib/ld-*.so r,
29}
30
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore b/contrib/apparmor/gnunet-service-namestore
index 3b917a2a3..68b94e6aa 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore
+++ b/contrib/apparmor/gnunet-service-namestore
@@ -1,21 +1,22 @@
1# Last Modified: Tue Jul 7 10:43:41 2015 1# Last Modified: Tue Jul 7 10:43:41 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-namestore { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/local/lib/gnunet/libexec/gnunet-service-namestore mr, 8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore mr,
8 9
9 #Gnunet librairies 10 #Gnunet librairies
10 /usr/local/lib/libgnunetnamecache.so.* mr, 11 @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr,
11 /usr/local/lib/libgnunetgnsrecord.so.* mr, 12 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr,
12 /usr/local/lib/libgnunetstatistics.so.* mr, 13 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
13 /usr/local/lib/libgnunetnamestore.so.* mr, 14 @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr,
14 /usr/local/lib/libgnunetdnsparser.so.* mr, 15 @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr,
15 16
16 #Gnunet plugin 17 #Gnunet plugin
17 /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r, 18 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r,
18 /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr, 19 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr,
19 20
20 #Librairies 21 #Librairies
21 /usr/lib/libidn.so.* mr, 22 /usr/lib/libidn.so.* mr,
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse b/contrib/apparmor/gnunet-service-nse
index 54acd5215..a3f7f2a12 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse
+++ b/contrib/apparmor/gnunet-service-nse
@@ -1,15 +1,16 @@
1# Last Modified: Fri Jul 3 17:37:49 2015 1# Last Modified: Fri Jul 3 17:37:49 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-nse { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/local/lib/gnunet/libexec/gnunet-service-nse mr, 8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse mr,
8 9
9 #Gnunet librairies 10 #Gnunet librairies
10 /usr/local/lib/libgnunetnse.so.* mr, 11 @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr,
11 /usr/local/lib/libgnunetcore.so.* mr, 12 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
12 /usr/local/lib/libgnunetstatistics.so.* mr, 13 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
13 14
14 /usr/lib/ld-*.so mr, 15 /usr/lib/ld-*.so mr,
15 16
diff --git a/contrib/apparmor/gnunet-service-peerinfo b/contrib/apparmor/gnunet-service-peerinfo
new file mode 100644
index 000000000..1ce4a85f8
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-peerinfo
@@ -0,0 +1,21 @@
1# Last Modified: Wed Jul 8 17:03:17 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo {
7 #include <abstractions/gnunet-common>
8
9 @{GNUNET_PREFIX}/share/gnunet/hellos/ r,
10 @{GNUNET_PREFIX}/share/gnunet/hellos/* r,
11
12 /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r,
13 /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw,
14
15 /usr/lib/ld-*.so r,
16
17 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo mr,
18
19 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
20 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
21}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore b/contrib/apparmor/gnunet-service-peerstore
index 0f9f8ed8c..536e4ee0f 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore
+++ b/contrib/apparmor/gnunet-service-peerstore
@@ -1,7 +1,8 @@
1# Last Modified: Mon Jul 27 11:06:13 2015 1# Last Modified: Mon Jul 27 11:06:13 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-peerstore { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 #Librairies 8 #Librairies
@@ -9,14 +10,14 @@
9 /usr/lib/libpthread-*.so mr, 10 /usr/lib/libpthread-*.so mr,
10 /usr/lib/libsqlite3.so.* mr, 11 /usr/lib/libsqlite3.so.* mr,
11 12
12 /usr/local/lib/gnunet/libexec/gnunet-service-peerstore mr, 13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore mr,
13 14
14 #Gnunet Plugin 15 #Gnunet Plugin
15 /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, 16 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r,
16 /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, 17 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr,
17 18
18 #Gnunet librairies 19 #Gnunet librairies
19 /usr/local/lib/libgnunetpeerstore.so.* mr, 20 @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr,
20 21
21 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, 22 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk,
22 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, 23 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw,
diff --git a/contrib/apparmor/gnunet-service-regex b/contrib/apparmor/gnunet-service-regex
new file mode 100644
index 000000000..358675dc0
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-regex
@@ -0,0 +1,18 @@
1# Last Modified: Tue Jul 21 16:59:39 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex {
6 #include <abstractions/gnunet-common>
7
8 /usr/lib/ld-*.so r,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex mr,
11
12 #Gnunet librairies
13 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr,
15 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
16
17 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
18}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver b/contrib/apparmor/gnunet-service-resolver
index 0ffa5cea2..6c5e3eb60 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver
+++ b/contrib/apparmor/gnunet-service-resolver
@@ -1,10 +1,11 @@
1# Last Modified: Thu Jul 9 10:01:36 2015 1# Last Modified: Thu Jul 9 10:01:36 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-resolver { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /usr/local/lib/gnunet/libexec/gnunet-service-resolver mr, 8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver mr,
8 9
9 #Librairies 10 #Librairies
10 /usr/lib/ld-*.so r, 11 /usr/lib/ld-*.so r,
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation b/contrib/apparmor/gnunet-service-revocation
index c226502b3..6e6412820 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation
+++ b/contrib/apparmor/gnunet-service-revocation
@@ -1,8 +1,9 @@
1# Last Modified: Thu Jul 9 10:16:30 2015 1# Last Modified: Thu Jul 9 10:16:30 2015
2 2
3#include <tunables/global> 3#include <tunables/global>
4#include <tunables/gnunet>
4 5
5/usr/local/lib/gnunet/libexec/gnunet-service-revocation { 6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation {
6 #include <abstractions/gnunet-common> 7 #include <abstractions/gnunet-common>
7 8
8 /etc/gnunet.conf r, 9 /etc/gnunet.conf r,
@@ -16,11 +17,11 @@
16 17
17 /usr/lib/ld-*.so r, 18 /usr/lib/ld-*.so r,
18 19
19 /usr/local/lib/gnunet/libexec/gnunet-service-revocation mr, 20 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation mr,
20 21
21 #Gnunet librairies 22 #Gnunet librairies
22 /usr/local/lib/libgnunetcore.so.* mr, 23 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
23 /usr/local/lib/libgnunetrevocation.so.* mr, 24 @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr,
24 /usr/local/lib/libgnunetset.so.* mr, 25 @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr,
25 /usr/local/lib/libgnunetstatistics.so.* mr, 26 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
26} 27}
diff --git a/contrib/apparmor/gnunet-service-scalarproduct-alice b/contrib/apparmor/gnunet-service-scalarproduct-alice
new file mode 100644
index 000000000..7a7ba77d5
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-scalarproduct-alice
@@ -0,0 +1,13 @@
1# Last Modified: Mon Jul 27 15:48:05 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice {
6 #include <abstractions/gnunet-common>
7
8 /usr/lib/ld-*.so r,
9 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr,
10 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
11 @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr,
12
13}
diff --git a/contrib/apparmor/gnunet-service-scalarproduct-bob b/contrib/apparmor/gnunet-service-scalarproduct-bob
new file mode 100644
index 000000000..a7faae9d0
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-scalarproduct-bob
@@ -0,0 +1,14 @@
1# Last Modified: Mon Jul 27 15:48:05 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob {
6 #include <abstractions/gnunet-common>
7
8 /usr/lib/ld-*.so r,
9
10 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr,
11
12 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr,
14}
diff --git a/contrib/apparmor/gnunet-service-set b/contrib/apparmor/gnunet-service-set
new file mode 100644
index 000000000..d290f7eda
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-set
@@ -0,0 +1,18 @@
1# Last Modified: Wed Jul 8 10:52:48 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set {
6 #include <abstractions/gnunet-common>
7
8 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set mr,
9
10 #Gnunet librairies
11 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
12 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
13 @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
14 @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr,
15
16 #Librairies
17 /usr/lib/ld-*.so r,
18}
diff --git a/contrib/apparmor/gnunet-service-statistics b/contrib/apparmor/gnunet-service-statistics
new file mode 100644
index 000000000..e26e30edc
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-statistics
@@ -0,0 +1,16 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics {
7 #include <abstractions/gnunet-common>
8
9 /var/lib/gnunet/.local/share/gnunet/statistics.dat rw,
10
11 /usr/lib/ld-*.so r,
12
13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics mr,
14
15 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
16}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template b/contrib/apparmor/gnunet-service-template
index 15a00cbee..824183e78 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template
+++ b/contrib/apparmor/gnunet-service-template
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 21 16:06:04 2015 1# Last Modified: Tue Jul 21 16:06:04 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-template { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 /tmp/gnunet-system-runtime/ w, 8 /tmp/gnunet-system-runtime/ w,
@@ -11,5 +12,5 @@
11 /usr/lib/ld-*.so r, 12 /usr/lib/ld-*.so r,
12 13
13 #Gnunet Librairies 14 #Gnunet Librairies
14 /usr/local/lib/gnunet/libexec/gnunet-service-template mr, 15 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template mr,
15} 16}
diff --git a/contrib/apparmor/gnunet-service-testbed b/contrib/apparmor/gnunet-service-testbed
new file mode 100644
index 000000000..06e8f36ea
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-testbed
@@ -0,0 +1,36 @@
1# Last Modified: Mon Jul 27 11:02:46 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) {
6 #include <abstractions/gnunet-common>
7
8 /etc/gai.conf r,
9
10 /tmp/gnunet-system-runtime/ w,
11 /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w,
12 /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w,
13
14 /usr/lib/ld-*.so r,
15
16 /dev/null r,
17
18 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-* r,
19
20 @{GNUNET_PREFIX}/lib/gnunet/libexec/ r,
21 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px,
22 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed mr,
23
24 #Gnunet librairies
25 @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr,
26 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
27 @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr,
28 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
29 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
30 @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr,
31 @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr,
32 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
33
34 @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r,
35
36}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger b/contrib/apparmor/gnunet-service-testbed-logger
index b646b9450..5bd6a77d3 100644
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger
+++ b/contrib/apparmor/gnunet-service-testbed-logger
@@ -1,7 +1,8 @@
1# Last Modified: Tue Jul 21 17:19:18 2015 1# Last Modified: Tue Jul 21 17:19:18 2015
2#include <tunables/global> 2#include <tunables/global>
3#include <tunables/gnunet>
3 4
4/usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger { 5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger {
5 #include <abstractions/gnunet-common> 6 #include <abstractions/gnunet-common>
6 7
7 #??? 8 #???
@@ -12,5 +13,5 @@
12 13
13 /usr/lib/ld-*.so r, 14 /usr/lib/ld-*.so r,
14 15
15 /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger mr, 16 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger mr,
16} 17}
diff --git a/contrib/apparmor/gnunet-service-transport b/contrib/apparmor/gnunet-service-transport
new file mode 100644
index 000000000..52985cf1b
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-transport
@@ -0,0 +1,29 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4#include <tunables/gnunet>
5
6profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport {
7 #include <abstractions/gnunet-common>
8
9 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
10
11 /usr/lib/ld-*.so r,
12
13 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport mr,
14
15 #Gnunet plugin
16 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.la r,
17 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.so mr,
18 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.la r,
19 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.so mr,
20
21 #Gnunet librairies
22 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
23 @{GNUNET_PREFIX}/lib/libgnunetfragmentation.so.* mr,
24 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
25 @{GNUNET_PREFIX}/lib/libgnunetnat.so.* mr,
26 @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr,
27 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
28 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
29}
diff --git a/contrib/apparmor/gnunet-service-vpn b/contrib/apparmor/gnunet-service-vpn
new file mode 100644
index 000000000..56845568e
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-vpn
@@ -0,0 +1,28 @@
1# Last Modified: Mon Jul 20 11:20:57 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn {
6 #include <abstractions/gnunet-common>
7
8 #Capability
9 capability setuid,
10 capability net_admin,
11
12 /dev/net/tun rw,
13
14 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn mr,
15
16 #Librairies
17 /usr/lib/ld-*.so r,
18
19 #Gnunet helper
20 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn Px,
21
22 #Gnunet librairies
23 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
24 @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
25 @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
26 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
27 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
28}
diff --git a/contrib/apparmor/tunables/gnunet b/contrib/apparmor/tunables/gnunet
new file mode 100644
index 000000000..e7ff8256a
--- /dev/null
+++ b/contrib/apparmor/tunables/gnunet
@@ -0,0 +1 @@
@{GNUNET_PREFIX}=/usr/local
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit
deleted file mode 100644
index 122b729bd..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit
+++ /dev/null
@@ -1,23 +0,0 @@
1# Last Modified: Mon Jul 27 15:57:50 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-exit {
5 #include <abstractions/gnunet-common>
6
7 /usr/lib/ld-*.so r,
8
9 /usr/lib/locale/locale-archive r,
10
11 /usr/local/lib/gnunet/libexec/gnunet-daemon-exit mr,
12
13 #Gnunet librairies
14 /usr/local/lib/libgnunetcadet.so.* mr,
15 /usr/local/lib/libgnunetdht.so.* mr,
16 /usr/local/lib/libgnunetdnsstub.so.* mr,
17 /usr/local/lib/libgnunetregex.so.* mr,
18 /usr/local/lib/libgnunetstatistics.so.* mr,
19 /usr/local/lib/libgnunettun.so.* mr,
20
21 /usr/share/locale/locale.alias r,
22
23}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt
deleted file mode 100644
index 95a1bcf52..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt
+++ /dev/null
@@ -1,25 +0,0 @@
1# Last Modified: Mon Jul 20 17:48:20 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-pt {
5 #include <abstractions/gnunet-common>
6
7 #Librairies
8 /usr/lib/ld-*.so r,
9 /usr/lib/libidn.so.* mr,
10
11 /usr/lib/locale/locale-archive r,
12
13 /usr/local/lib/gnunet/libexec/gnunet-daemon-pt mr,
14
15 #Gnunet librairies
16 /usr/local/lib/libgnunetcadet.so.* mr,
17 /usr/local/lib/libgnunetdht.so.* mr,
18 /usr/local/lib/libgnunetdns.so.* mr,
19 /usr/local/lib/libgnunetdnsparser.so.* mr,
20 /usr/local/lib/libgnunetmesh.so.* mr,
21 /usr/local/lib/libgnunetstatistics.so.* mr,
22 /usr/local/lib/libgnunetvpn.so.* mr,
23
24 /usr/share/locale/locale.alias r,
25}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler
deleted file mode 100644
index da3d40887..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler
+++ /dev/null
@@ -1,12 +0,0 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr,
8 /usr/local/lib/libgnunetdht.so.* mr,
9 /usr/local/lib/libgnunetregexblock.so.* mr,
10 /usr/local/lib/libgnunetstatistics.so.* mr,
11
12}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist
deleted file mode 100644
index 15fa9ffe5..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist
+++ /dev/null
@@ -1,12 +0,0 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr,
8 /usr/local/lib/libgnunetats.so.* mr,
9 /usr/local/lib/libgnunethello.so.* mr,
10 /usr/local/lib/libgnunettransport.so.* mr,
11
12}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay
deleted file mode 100644
index 260b60400..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay
+++ /dev/null
@@ -1,22 +0,0 @@
1# Last Modified: Mon Jul 27 16:37:03 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay {
5 #include <abstractions/gnunet-common>
6
7 #Librairies
8 /usr/lib/ld-*.so r,
9 /usr/lib/libpthread-*.so mr,
10 /usr/lib/libsqlite3.so.* mr,
11
12 /usr/lib/locale/locale-archive r,
13
14 /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr,
15
16 #Gnunet librairies
17 /usr/local/lib/libgnunetats.so.* mr,
18 /usr/local/lib/libgnunethello.so.* mr,
19 /usr/local/lib/libgnunettransport.so.* mr,
20
21 /usr/share/locale/locale.alias r,
22}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology
deleted file mode 100644
index eb1d9306f..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology
+++ /dev/null
@@ -1,26 +0,0 @@
1# Last Modified: Fri Jul 3 17:37:12 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-daemon-topology {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-daemon-topology mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunetats.so.* mr,
11 /usr/local/lib/libgnunetfriends.so.* mr,
12 /usr/local/lib/libgnunetcore.so.* mr,
13 /usr/local/lib/libgnunetpeerinfo.so.* mr,
14 /usr/local/lib/libgnunetstatistics.so.* mr,
15 /usr/local/lib/libgnunettransport.so.* mr,
16 /usr/local/lib/libgnunethello.so.* mr,
17
18 /usr/lib/ld-*.so r,
19
20 /usr/lib//locale/locale-archive r,
21
22 /usr/lib/gconv/gconv-modules r,
23
24 /usr/share/locale/locale.alias r,
25 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
26}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns
deleted file mode 100644
index 5b1bdc2b0..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns
+++ /dev/null
@@ -1,25 +0,0 @@
1# Last Modified: Tue Jul 21 16:45:05 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-dns2gns {
5 #include <abstractions/gnunet-common>
6
7 #Librairies
8 /usr/lib/ld-*.so r,
9 /usr/lib/libidn.so.* mr,
10
11 /usr/lib/locale/locale-archive r,
12
13 /usr/local/lib/gnunet/libexec/gnunet-dns2gns mr,
14
15 #Gnunet librairies
16 /usr/local/lib/libgnunetdnsparser.so.* mr,
17 /usr/local/lib/libgnunetdnsstub.so.* mr,
18 /usr/local/lib/libgnunetgns.so.* mr,
19 /usr/local/lib/libgnunetgnsrecord.so.* mr,
20 /usr/local/lib/libgnunetidentity.so.* mr,
21 /usr/local/lib/libgnunetnamestore.so.* mr,
22 /usr/local/lib/libgnunetstatistics.so.* mr,
23
24 /usr/share/locale/locale.alias r,
25}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback
deleted file mode 100644
index b6663899e..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback
+++ /dev/null
@@ -1,9 +0,0 @@
1# Last Modified: Tue Jul 28 11:46:24 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) {
5 #include <abstractions/gnunet-common>
6 #include <abstractions/gnunet-libaudio>
7
8 /usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback mr,
9}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record
deleted file mode 100644
index e0a41edc3..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record
+++ /dev/null
@@ -1,9 +0,0 @@
1# Last Modified: Tue Jul 28 11:42:58 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) {
5 #include <abstractions/gnunet-common>
6 #include <abstractions/gnunet-libaudio>
7
8 /usr/local/lib/gnunet/libexec/gnunet-helper-audio-record mr,
9}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit
deleted file mode 100644
index e18b49358..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit
+++ /dev/null
@@ -1,11 +0,0 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 capability setuid,
8
9 /usr/local/lib/gnunet/libexec/gnunet-helper-exit mr,
10
11}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client
deleted file mode 100644
index 32cb42552..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client
+++ /dev/null
@@ -1,11 +0,0 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 capability setuid,
8
9 /usr/local/lib/gnunet/libexec/gnunet-helper-nat-client mr,
10
11}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server
deleted file mode 100644
index c3bd37910..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server
+++ /dev/null
@@ -1,11 +0,0 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 capability setuid,
8
9 /usr/local/lib/gnunet/libexec/gnunet-helper-nat-server mr,
10
11}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed
deleted file mode 100644
index 8c6748d4a..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed
+++ /dev/null
@@ -1,36 +0,0 @@
1# Last Modified: Mon Jul 27 11:02:37 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 /dev/null rw,
8
9 /etc/gai.conf r,
10
11 /usr/lib/ld-*.so r,
12
13 /usr/lib/locale/locale-archive r,
14
15 /usr/share/locale/locale.alias r,
16 /usr/share/locale/fr/LC_MESSAGES/libc.mo r,
17
18 /usr/lib/gconv/gconv-modules r,
19
20 /usr/local/lib/gnunet/libexec/ r,
21 /usr/local/lib/gnunet/libexec/gnunet-helper-testbed mr,
22 /usr/local/lib/gnunet/libexec/gnunet-service-arm r,
23 /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px,
24
25 #Gnunet librairies
26 /usr/local/lib/libgnunetarm.so.* mr,
27 /usr/local/lib/libgnunetats.so.* mr,
28 /usr/local/lib/libgnunetcore.so.* mr,
29 /usr/local/lib/libgnunethello.so.* mr,
30 /usr/local/lib/libgnunetstatistics.so.* mr,
31 /usr/local/lib/libgnunettestbed.so.* mr,
32 /usr/local/lib/libgnunettesting.so.* mr,
33 /usr/local/lib/libgnunettransport.so.* mr,
34
35 /usr/local/share/gnunet/testing_hostkeys.ecc r,
36}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan
deleted file mode 100644
index 6f2f98e15..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan
+++ /dev/null
@@ -1,11 +0,0 @@
1# Last Modified: Tue Jul 28 11:44:00 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 capability setuid,
8
9 /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan mr,
10
11}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy
deleted file mode 100644
index d9ffed813..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy
+++ /dev/null
@@ -1,9 +0,0 @@
1# Last Modified: Tue Jul 28 11:36:52 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr,
8
9}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm
deleted file mode 100644
index fe3f037ed..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm
+++ /dev/null
@@ -1,109 +0,0 @@
1# Last Modified: Thu Jul 9 10:27:23 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-arm {
6 #include <abstractions/gnunet-common>
7
8 /dev/null ra,
9
10 /tmp/gnunet-*-runtime/ rw,
11 /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw,
12 /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw,
13 /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw,
14 /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw,
15
16 /tmp/gnunet-system-runtime/ rw,
17 /tmp/gnunet-system-runtime/gnunet-service-*.sock rw,
18 /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw,
19 /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw,
20
21 /var/lib/gnunet/.local/share/gnunet/ r,
22 /var/lib/gnunet/.local/share/gnunet/revocation.dat r,
23 /var/lib/gnunet/.local/share/gnunet/peerstore/ a,
24 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk,
25 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw,
26 /var/lib/gnunet/.config/gnunet.conf r,
27
28 #Librairies
29 /usr/lib/ld-*.so r,
30 /usr/lib/libpthread-*.so mr,
31
32 /usr/lib/libsqlite3.so.* mr,
33
34 /usr/lib/locale/locale-archive r,
35
36 /usr/share/locale/locale-alias r,
37
38 /usr/local/lib/gnunet/libexec/gnunet-service-arm mr,
39
40 /usr/local/lib/gnunet/ r,
41
42 /usr/local/lib/gnunet/libexec/ r,
43
44 #Gnunet daemon
45 /usr/local/lib/gnunet/libexec/gnunet-daemon-exit Px,
46 /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist Px,
47 /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger Px,
48 /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px,
49 /usr/local/lib/gnunet/libexec/gnunet-daemon-topology Px,
50 /usr/local/lib/gnunet/libexec/gnunet-daemon-pt Px,
51
52 /usr/local/lib/gnunet/libexec/gnunet-dns2gns Px,
53
54 /usr/local/lib/gnunet/libexec/gnunet-gns-proxy Px,
55
56 /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd Px,
57
58 #Gnunet service
59 /usr/local/lib/gnunet/libexec/gnunet-service-ats Px,
60 /usr/local/lib/gnunet/libexec/gnunet-service-cadet Px,
61 /usr/local/lib/gnunet/libexec/gnunet-service-core Px,
62 /usr/local/lib/gnunet/libexec/gnunet-service-conversation Px,
63 /usr/local/lib/gnunet/libexec/gnunet-service-datastore Px,
64 /usr/local/lib/gnunet/libexec/gnunet-service-dht Px,
65 /usr/local/lib/gnunet/libexec/gnunet-service-dns Px,
66 /usr/local/lib/gnunet/libexec/gnunet-service-fs Px,
67 /usr/local/lib/gnunet/libexec/gnunet-service-gns Px,
68 /usr/local/lib/gnunet/libexec/gnunet-service-identity Px,
69 /usr/local/lib/gnunet/libexec/gnunet-service-mesh Px,
70 /usr/local/lib/gnunet/libexec/gnunet-service-namecache Px,
71 /usr/local/lib/gnunet/libexec/gnunet-service-namestore Px,
72 /usr/local/lib/gnunet/libexec/gnunet-service-nse Px,
73 /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo Px,
74 /usr/local/lib/gnunet/libexec/gnunet-service-peerstore Px,
75 /usr/local/lib/gnunet/libexec/gnunet-service-regex Px,
76 /usr/local/lib/gnunet/libexec/gnunet-service-resolver Px,
77 /usr/local/lib/gnunet/libexec/gnunet-service-revocation Px,
78 /usr/local/lib/gnunet/libexec/gnunet-service-set Px,
79 /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px,
80 /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px,
81 /usr/local/lib/gnunet/libexec/gnunet-service-statistics Px,
82 /usr/local/lib/gnunet/libexec/gnunet-service-template Px,
83 /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px,
84 /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger Px,
85 /usr/local/lib/gnunet/libexec/gnunet-service-transport Px,
86 /usr/local/lib/gnunet/libexec/gnunet-service-vpn Px,
87
88 #Gnunet helper
89 /usr/local/lib/gnunet/libexec/gnunet-helper-dns r,
90
91 #Gnunet librairies
92 /usr/local/lib/libgnunetats.so.* mr,
93 /usr/local/lib/libgnunetcadet.so.* mr,
94 /usr/local/lib/libgnunetdht.so.* mr,
95 /usr/local/lib/libgnunetdnsstub.so.* mr,
96 /usr/local/lib/libgnunetgnsrecord.so.* r,
97 /usr/local/lib/libgnunethello.so.* mr,
98 /usr/local/lib/libgnunetnamecache.so.* r,
99 /usr/local/lib/libgnunetpeerstore.so.* mr,
100 /usr/local/lib/libgnunetregex.so.* mr,
101 /usr/local/lib/libgnunetset.so.* mr,
102 /usr/local/lib/libgnunetstatistics.so.* mr,
103 /usr/local/lib/libgnunettransport.so.* mr,
104 /usr/local/lib/libgnunettun.so.* mr,
105
106 #Gnunet plugin
107 /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r,
108 /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr,
109}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats
deleted file mode 100644
index 86273dc34..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats
+++ /dev/null
@@ -1,19 +0,0 @@
1# Last Modified: Wed Jul 8 10:49:34 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-ats {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-service-ats mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunethello.so.* mr,
11 /usr/local/lib/libgnunetstatistics.so.* mr,
12 /usr/local/lib/libgnunetats.so.* mr,
13
14 #Gnunet plugin
15 /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.la r,
16 /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.so mr,
17
18 /usr/lib/ld-*.so r,
19}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet
deleted file mode 100644
index f834a6d05..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet
+++ /dev/null
@@ -1,21 +0,0 @@
1# Last Modified: Mon Jul 27 11:09:34 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-cadet {
5 #include <abstractions/gnunet-common>
6
7 /usr/lib/ld-*.so r,
8 /usr/lib/libpthread-*.so mr,
9 /usr/lib/librt-*.so mr,
10 /usr/local/lib/gnunet/libexec/gnunet-service-cadet mr,
11 /usr/local/lib/libgnunetats.so.* mr,
12 /usr/local/lib/libgnunetblock.so.* mr,
13 /usr/local/lib/libgnunetcore.so.* mr,
14 /usr/local/lib/libgnunetdht.so.* mr,
15 /usr/local/lib/libgnunethello.so.* mr,
16 /usr/local/lib/libgnunetpeerinfo.so.* mr,
17 /usr/local/lib/libgnunetstatistics.so.* mr,
18 /usr/local/lib/libgnunettransport.so.* mr,
19 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
20
21}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation
deleted file mode 100644
index 9b952866e..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation
+++ /dev/null
@@ -1,27 +0,0 @@
1# Last Modified: Tue Jul 21 16:53:39 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-conversation {
5 #include <abstractions/gnunet-common>
6
7 #Librairies
8 /usr/lib/ld-*.so r,
9 /usr/lib/libidn.so.* mr,
10
11 /usr/local/lib/gnunet/libexec/gnunet-service-conversation mr,
12
13 #Gnunet librairies
14 /usr/local/lib/libgnunetcadet.so.* mr,
15 /usr/local/lib/libgnunetconversation.so.* mr,
16 /usr/local/lib/libgnunetdnsparser.so.* mr,
17 /usr/local/lib/libgnunetgns.so.* mr,
18 /usr/local/lib/libgnunetgnsrecord.so.* mr,
19 /usr/local/lib/libgnunetidentity.so.* mr,
20 /usr/local/lib/libgnunetmesh.so.* mr,
21 /usr/local/lib/libgnunetmicrophone.so.* mr,
22 /usr/local/lib/libgnunetnamestore.so.* mr,
23 /usr/local/lib/libgnunetspeaker.so.* mr,
24 /usr/local/lib/libgnunetstatistics.so.* mr,
25
26 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
27}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core
deleted file mode 100644
index e2b4229bb..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core
+++ /dev/null
@@ -1,19 +0,0 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-core {
6 #include <abstractions/gnunet-common>
7
8 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
9
10 /usr/lib/ld-*.so r,
11
12 /usr/local/lib/gnunet/libexec/gnunet-service-core mr,
13
14 #Gnunet librairies
15 /usr/local/lib/libgnunetats.so.* mr,
16 /usr/local/lib/libgnunethello.so.* mr,
17 /usr/local/lib/libgnunetstatistics.so.* mr,
18 /usr/local/lib/libgnunettransport.so.* mr,
19}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht
deleted file mode 100644
index 224465cd5..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht
+++ /dev/null
@@ -1,56 +0,0 @@
1# Last Modified: Fri Jul 3 17:37:39 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-dht {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-service-dht mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunetstatistics.so.* mr,
11 /usr/local/lib/libgnunetcore.so.* mr,
12 /usr/local/lib/libgnunetnse.so.* mr,
13 /usr/local/lib/libgnunetats.so.* mr,
14 /usr/local/lib/libgnunettransport.so.* mr,
15 /usr/local/lib/libgnunetpeerinfo.so.* mr,
16 /usr/local/lib/libgnunethello.so.* mr,
17 /usr/local/lib/libgnunetblock.so.* mr,
18 /usr/local/lib/libgnunetdatacache.so.* mr,
19 /usr/local/lib/libgnunetfs.so.* mr,
20 /usr/local/lib/libgnunetdatastore.so.* mr,
21 /usr/local/lib/libgnunetregexblock.so.* mr,
22 /usr/local/lib/libgnunetgnsrecord.so.* mr,
23 /usr/local/lib/libgnunetdnsparser.so.* mr,
24
25 #Gnunet plugin
26 /usr/local/lib/gnunet/ r,
27 /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r,
28 /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr,
29 /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r,
30 /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr,
31 /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r,
32 /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr,
33 /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r,
34 /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr,
35 /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r,
36 /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr,
37 /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr,
38 /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r,
39 /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr,
40 /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r,
41 /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr,
42 /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.la r,
43 /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.so mr,
44
45 #Librairies
46 /usr/lib/ld-*.so r,
47 /usr/lib/libextractor.so.* mr,
48 /usr/lib/libbz2.so.* mr,
49 /usr/lib/librt-*.so mr,
50 /usr/lib/libpthread-*.so mr,
51 /usr/lib/libidn.so.* mr,
52
53 /tmp/gnunet-system-runtime/gnunet-service-dht.sock w,
54
55 /tmp/gnunet-datacachebloom* rw,
56}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns
deleted file mode 100644
index 2f2dd711a..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns
+++ /dev/null
@@ -1,19 +0,0 @@
1# Last Modified: Mon Jul 27 15:18:30 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-dns {
5 #include <abstractions/gnunet-common>
6
7 capability setgid,
8
9 /usr/lib/ld-*.so r,
10
11 /usr/local/lib/gnunet/libexec/gnunet-helper-dns Px,
12
13 /usr/local/lib/gnunet/libexec/gnunet-service-dns mr,
14
15 #Gnunet librairies
16 /usr/local/lib/libgnunetdnsstub.so.* mr,
17 /usr/local/lib/libgnunetstatistics.so.* mr,
18 /usr/local/lib/libgnunettun.so.* mr,
19}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs
deleted file mode 100644
index 247d29282..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs
+++ /dev/null
@@ -1,59 +0,0 @@
1# Last Modified: Wed Jul 8 10:52:48 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-fs {
6 #include <abstractions/gnunet-common>
7
8 /etc/gnunet.conf r,
9 @{HOME}/.config/gnunet.conf r,
10
11 /tmp/gnunet-system-runtime/gnunet-service-fs.sock w,
12
13 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
14
15 owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r,
16
17 #Librairies
18 /usr/lib/ld-*.so r,
19 /usr/lib/libbz2.so.* mr,
20 /usr/lib/libextractor.so.* mr,
21 /usr/lib/libidn.so.* mr,
22 /usr/lib/libpthread-*.so mr,
23 /usr/lib/librt-*.so mr,
24
25 /usr/local/lib/gnunet/libexec/gnunet-service-fs mr,
26
27 #Gnunet plugin
28 /usr/local/lib/gnunet/ r,
29 /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r,
30 /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr,
31 /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r,
32 /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr,
33 /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r,
34 /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr,
35 /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r,
36 /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr,
37 /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r,
38 /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr,
39 /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r,
40 /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr,
41 /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r,
42 /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr,
43
44 #Gnunet librairies
45 /usr/local/lib/libgnunetats.so.* mr,
46 /usr/local/lib/libgnunetblock.so.* mr,
47 /usr/local/lib/libgnunetcadet.so.* mr,
48 /usr/local/lib/libgnunetcore.so.* mr,
49 /usr/local/lib/libgnunetdatastore.so.* mr,
50 /usr/local/lib/libgnunetdht.so.* mr,
51 /usr/local/lib/libgnunetdnsparser.so.* mr,
52 /usr/local/lib/libgnunetfs.so.* mr,
53 /usr/local/lib/libgnunetgnsrecord.so.* mr,
54 /usr/local/lib/libgnunethello.so.* mr,
55 /usr/local/lib/libgnunetmesh.so.* mr,
56 /usr/local/lib/libgnunetpeerstore.so.* mr,
57 /usr/local/lib/libgnunetregexblock.so.* mr,
58 /usr/local/lib/libgnunetstatistics.so.* mr,
59}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns
deleted file mode 100644
index c7f650d1b..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns
+++ /dev/null
@@ -1,29 +0,0 @@
1# Last Modified: Wed Jul 8 15:17:46 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-gns {
6 #include <abstractions/gnunet-common>
7
8 @{HOME}/.config/gnunet.conf r,
9
10 #Librairies
11 /usr/lib/ld-2.21.so r,
12 /usr/lib/libidn.so.* mr,
13
14 /usr/local/lib/gnunet/libexec/gnunet-service-gns mr,
15
16 #Gnunet librairies
17 /usr/local/lib/libgnunetdht.so.* mr,
18 /usr/local/lib/libgnunetdns.so.* mr,
19 /usr/local/lib/libgnunetdnsparser.so.* mr,
20 /usr/local/lib/libgnunetdnsstub.so.* mr,
21 /usr/local/lib/libgnunetgnsrecord.so.* mr,
22 /usr/local/lib/libgnunetidentity.so.* mr,
23 /usr/local/lib/libgnunetnamecache.so.* mr,
24 /usr/local/lib/libgnunetnamestore.so.* mr,
25 /usr/local/lib/libgnunetrevocation.so.* mr,
26 /usr/local/lib/libgnunetstatistics.so.* mr,
27 /usr/local/lib/libgnunettun.so.* mr,
28 /usr/local/lib/libgnunetvpn.so.* mr,
29}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh
deleted file mode 100644
index 1496e228f..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh
+++ /dev/null
@@ -1,29 +0,0 @@
1# Last Modified: Fri Jul 3 17:37:56 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-mesh {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-service-mesh mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunetats.so.* mr,
11 /usr/local/lib/libgnunettransport.so.* mr,
12 /usr/local/lib/libgnunetcore.so.* mr,
13 /usr/local/lib/libgnunetdht.so.* mr,
14 /usr/local/lib/libgnunetstatistics.so.* mr,
15 /usr/local/lib/libgnunetpeerinfo.so.* mr,
16 /usr/local/lib/libgnunethello.so.* mr,
17 /usr/local/lib/libgnunetblock.so.* mr,
18
19 #Librairies
20 /usr/lib/librt-*.so mr,
21 /usr/lib/libpthread-*.so mr,
22 /usr/lib/ld-*.so r,
23
24 @{HOME}/.local/share/gnunet/private_key.ecc rk,
25
26 /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w,
27
28 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk,
29}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache
deleted file mode 100644
index 6338c9a5b..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache
+++ /dev/null
@@ -1,29 +0,0 @@
1# Last Modified: Thu Jul 9 10:01:49 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-namecache {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-service-namecache mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunetdnsparser.so.* mr,
11 /usr/local/lib/libgnunetnamecache.so.* mr,
12 /usr/local/lib/libgnunetstatistics.so.* mr,
13 /usr/local/lib/libgnunetgnsrecord.so.* mr,
14
15 #Gnunet plugin
16 /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r,
17 /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr,
18
19 /var/lib/gnunet/.local/share/gnunet/namecache/ r,
20 /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk,
21 /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw,
22
23 #Librairies
24 /usr/lib/libpthread-*.so mr,
25 /usr/lib/libsqlite3.so.* mr,
26 /usr/lib/libidn.so.* mr,
27 /usr/lib/ld-*.so r,
28}
29
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo
deleted file mode 100644
index 8c7f079b4..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo
+++ /dev/null
@@ -1,20 +0,0 @@
1# Last Modified: Wed Jul 8 17:03:17 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-peerinfo {
6 #include <abstractions/gnunet-common>
7
8 /usr/local/share/gnunet/hellos/ r,
9 /usr/local/share/gnunet/hellos/* r,
10
11 /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r,
12 /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw,
13
14 /usr/lib/ld-*.so r,
15
16 /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo mr,
17
18 /usr/local/lib/libgnunethello.so.* mr,
19 /usr/local/lib/libgnunetstatistics.so.* mr,
20}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex
deleted file mode 100644
index e82f0483a..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex
+++ /dev/null
@@ -1,17 +0,0 @@
1# Last Modified: Tue Jul 21 16:59:39 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-regex {
5 #include <abstractions/gnunet-common>
6
7 /usr/lib/ld-*.so r,
8
9 /usr/local/lib/gnunet/libexec/gnunet-service-regex mr,
10
11 #Gnunet librairies
12 /usr/local/lib/libgnunetdht.so.* mr,
13 /usr/local/lib/libgnunetregexblock.so.* mr,
14 /usr/local/lib/libgnunetstatistics.so.* mr,
15
16 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
17}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice
deleted file mode 100644
index e61a20daa..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice
+++ /dev/null
@@ -1,12 +0,0 @@
1# Last Modified: Mon Jul 27 15:48:05 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice {
5 #include <abstractions/gnunet-common>
6
7 /usr/lib/ld-*.so r,
8 /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr,
9 /usr/local/lib/libgnunetcadet.so.* mr,
10 /usr/local/lib/libgnunetset.so.* mr,
11
12}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob
deleted file mode 100644
index c48ac50dc..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob
+++ /dev/null
@@ -1,11 +0,0 @@
1# Last Modified: Mon Jul 27 15:48:05 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob {
5 #include <abstractions/gnunet-common>
6
7 /usr/lib/ld-*.so r,
8 /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr,
9 /usr/local/lib/libgnunetcadet.so.* mr,
10 /usr/local/lib/libgnunetset.so.* mr,
11}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set
deleted file mode 100644
index d711f132c..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set
+++ /dev/null
@@ -1,17 +0,0 @@
1# Last Modified: Wed Jul 8 10:52:48 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-set {
5 #include <abstractions/gnunet-common>
6
7 /usr/local/lib/gnunet/libexec/gnunet-service-set mr,
8
9 #Gnunet librairies
10 /usr/local/lib/libgnunetcadet.so.* mr,
11 /usr/local/lib/libgnunetcore.so.* mr,
12 /usr/local/lib/libgnunetmesh.so.* mr,
13 /usr/local/lib/libgnunetblock.so.* mr,
14
15 #Librairies
16 /usr/lib/ld-*.so r,
17}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics
deleted file mode 100644
index 1ff8a8fd1..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics
+++ /dev/null
@@ -1,15 +0,0 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-statistics {
6 #include <abstractions/gnunet-common>
7
8 /var/lib/gnunet/.local/share/gnunet/statistics.dat rw,
9
10 /usr/lib/ld-*.so r,
11
12 /usr/local/lib/gnunet/libexec/gnunet-service-statistics mr,
13
14 /usr/local/lib/libgnunetstatistics.so.* mr,
15}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed
deleted file mode 100644
index de9ad2675..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed
+++ /dev/null
@@ -1,35 +0,0 @@
1# Last Modified: Mon Jul 27 11:02:46 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) {
5 #include <abstractions/gnunet-common>
6
7 /etc/gai.conf r,
8
9 /tmp/gnunet-system-runtime/ w,
10 /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w,
11 /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w,
12
13 /usr/lib/ld-*.so r,
14
15 /dev/null r,
16
17 /usr/local/lib/gnunet/libexec/gnunet-* r,
18
19 /usr/local/lib/gnunet/libexec/ r,
20 /usr/local/lib/gnunet/libexec/gnunet-service-arm Px,
21 /usr/local/lib/gnunet/libexec/gnunet-service-testbed mr,
22
23 #Gnunet librairies
24 /usr/local/lib/libgnunetarm.so.* mr,
25 /usr/local/lib/libgnunetats.so.* mr,
26 /usr/local/lib/libgnunetcore.so.* mr,
27 /usr/local/lib/libgnunethello.so.* mr,
28 /usr/local/lib/libgnunetstatistics.so.* mr,
29 /usr/local/lib/libgnunettestbed.so.* mr,
30 /usr/local/lib/libgnunettesting.so.* mr,
31 /usr/local/lib/libgnunettransport.so.* mr,
32
33 /usr/local/share/gnunet/testing_hostkeys.ecc r,
34
35}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport
deleted file mode 100644
index b50541f4c..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport
+++ /dev/null
@@ -1,28 +0,0 @@
1# Last Modified: Thu Jul 9 10:16:30 2015
2
3#include <tunables/global>
4
5/usr/local/lib/gnunet/libexec/gnunet-service-transport {
6 #include <abstractions/gnunet-common>
7
8 /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk,
9
10 /usr/lib/ld-*.so r,
11
12 /usr/local/lib/gnunet/libexec/gnunet-service-transport mr,
13
14 #Gnunet plugin
15 /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.la r,
16 /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.so mr,
17 /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.la r,
18 /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.so mr,
19
20 #Gnunet librairies
21 /usr/local/lib/libgnunetats.so.* mr,
22 /usr/local/lib/libgnunetfragmentation.so.* mr,
23 /usr/local/lib/libgnunethello.so.* mr,
24 /usr/local/lib/libgnunetnat.so.* mr,
25 /usr/local/lib/libgnunetpeerinfo.so.* mr,
26 /usr/local/lib/libgnunetstatistics.so.* mr,
27 /usr/local/lib/libgnunettransport.so.* mr,
28}
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn
deleted file mode 100644
index 48fda8563..000000000
--- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn
+++ /dev/null
@@ -1,26 +0,0 @@
1# Last Modified: Mon Jul 20 11:20:57 2015
2#include <tunables/global>
3
4/usr/local/lib/gnunet/libexec/gnunet-service-vpn {
5 #include <abstractions/gnunet-common>
6
7 capability setuid,
8 capability net_admin,
9
10 /dev/net/tun rw,
11
12 /usr/local/lib/gnunet/libexec/gnunet-service-vpn mr,
13
14 #Librairies
15 /usr/lib/ld-*.so r,
16
17 #Gnunet helper
18 /usr/local/lib/gnunet/libexec/gnunet-helper-vpn Px,
19
20 #Gnunet librairies
21 /usr/local/lib/libgnunetcadet.so.* mr,
22 /usr/local/lib/libgnunetmesh.so.* mr,
23 /usr/local/lib/libgnunetregex.so.* mr,
24 /usr/local/lib/libgnunetstatistics.so.* mr,
25 /usr/local/lib/libgnunettun.so.* mr,
26}