aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJulien Morvan <julien.morvan@outlook.com>2015-07-28 15:04:15 +0000
committerJulien Morvan <julien.morvan@outlook.com>2015-07-28 15:04:15 +0000
commitb7d7b8c0fc2985e922f8fb63a14b1b17386af069 (patch)
treee1c06895414d5b614221fc53918f581cb252e6b7
parent8f898484dc5034bb8900ee989c88ed31787ca442 (diff)
downloadgnunet-b7d7b8c0fc2985e922f8fb63a14b1b17386af069.tar.gz
gnunet-b7d7b8c0fc2985e922f8fb63a14b1b17386af069.zip
Add AppArmor abstractions(gnunet-common, gnunet-libaudio)
-rw-r--r--contrib/apparmor/abstractions/gnunet-common34
-rw-r--r--contrib/apparmor/abstractions/gnunet-libaudio23
2 files changed, 57 insertions, 0 deletions
diff --git a/contrib/apparmor/abstractions/gnunet-common b/contrib/apparmor/abstractions/gnunet-common
new file mode 100644
index 000000000..7d7515d80
--- /dev/null
+++ b/contrib/apparmor/abstractions/gnunet-common
@@ -0,0 +1,34 @@
1# This files contains common permissions for gnunet
2
3 /usr/share/zoneinfo/ r,
4 /usr/share/zoneinfo/** r,
5
6 /dev/urandom r,
7
8 /etc/ld.so.cache r,
9
10 @{PROC}/@{pid}/maps r,
11
12 #Gnunet configuration file
13 /usr/local/share/gnunet/config.d/ r,
14 /usr/local/share/gnunet/config.d/*.conf r,
15
16 /etc/gnunet.conf r,
17 owner @{HOME}/.config/gnunet.conf r,
18
19 #Librairies
20 /usr/lib/libc-*.so mr,
21 /usr/lib/libdl-*.so mr,
22 /usr/lib/libgcrypt.so.* mr,
23 /usr/lib/libltdl.so.* mr,
24 /usr/lib/libgpg-error.so.* mr,
25 /usr/lib/libm-*.so mr,
26 /usr/lib/libunistring.so.* mr,
27 /usr/lib/libz.so.* mr,
28
29 #Gnunet librairies
30 /usr/local/lib/libgnunetutil.so.* mr,
31
32 #For testbed (if the /tmp directory is used)
33 /tmp/testbed*/ rw,
34 /tmp/testbed*/** rwk,
diff --git a/contrib/apparmor/abstractions/gnunet-libaudio b/contrib/apparmor/abstractions/gnunet-libaudio
new file mode 100644
index 000000000..6dda03573
--- /dev/null
+++ b/contrib/apparmor/abstractions/gnunet-libaudio
@@ -0,0 +1,23 @@
1/usr/lib/libFLAC.so.* mr,
2/usr/lib/libXau.so.* mr,
3/usr/lib/libXdmcp.so.* mr,
4/usr/lib/libasyncns.so.* mr,
5/usr/lib/libattr.so.* mr,
6/usr/lib/libcap.so.* mr,
7/usr/lib/libdbus-1.so.* mr,
8/usr/lib/libjson-c.so.* mr,
9/usr/lib/liblz4.so.* mr,
10/usr/lib/liblzma.so.* mr,
11/usr/lib/libnsl-*.so mr,
12/usr/lib/libogg.so.* mr,
13/usr/lib/libopus.so.* mr,
14/usr/lib/libpthread-*.so mr,
15/usr/lib/libpulse.so.* mr,
16/usr/lib/libresolv-*.so mr,
17/usr/lib/librt-*.so mr,
18/usr/lib/libsndfile.so.* mr,
19/usr/lib/libsystemd.so.* mr,
20/usr/lib/libvorbis.so.* mr,
21/usr/lib/libvorbisenc.so.* mr,
22/usr/lib/libxcb.so.* mr,
23/usr/lib/pulseaudio/libpulsecommon-*.so mr,