diff options
author | Julien Morvan <julien.morvan@outlook.com> | 2015-07-28 14:56:33 +0000 |
---|---|---|
committer | Julien Morvan <julien.morvan@outlook.com> | 2015-07-28 14:56:33 +0000 |
commit | 8f898484dc5034bb8900ee989c88ed31787ca442 (patch) | |
tree | af6db17c2484b385f19e426ba17ed3b7ed1490c2 /contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm | |
parent | 42762fe40aaaf40bec4c20b821f074e082397351 (diff) | |
download | gnunet-8f898484dc5034bb8900ee989c88ed31787ca442.tar.gz gnunet-8f898484dc5034bb8900ee989c88ed31787ca442.zip |
Add AppArmor profiles
Diffstat (limited to 'contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm')
-rw-r--r-- | contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm | 109 |
1 files changed, 109 insertions, 0 deletions
diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm new file mode 100644 index 000000000..fe3f037ed --- /dev/null +++ b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm | |||
@@ -0,0 +1,109 @@ | |||
1 | # Last Modified: Thu Jul 9 10:27:23 2015 | ||
2 | |||
3 | #include <tunables/global> | ||
4 | |||
5 | /usr/local/lib/gnunet/libexec/gnunet-service-arm { | ||
6 | #include <abstractions/gnunet-common> | ||
7 | |||
8 | /dev/null ra, | ||
9 | |||
10 | /tmp/gnunet-*-runtime/ rw, | ||
11 | /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, | ||
12 | /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw, | ||
13 | /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw, | ||
14 | /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw, | ||
15 | |||
16 | /tmp/gnunet-system-runtime/ rw, | ||
17 | /tmp/gnunet-system-runtime/gnunet-service-*.sock rw, | ||
18 | /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw, | ||
19 | /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw, | ||
20 | |||
21 | /var/lib/gnunet/.local/share/gnunet/ r, | ||
22 | /var/lib/gnunet/.local/share/gnunet/revocation.dat r, | ||
23 | /var/lib/gnunet/.local/share/gnunet/peerstore/ a, | ||
24 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, | ||
25 | /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, | ||
26 | /var/lib/gnunet/.config/gnunet.conf r, | ||
27 | |||
28 | #Librairies | ||
29 | /usr/lib/ld-*.so r, | ||
30 | /usr/lib/libpthread-*.so mr, | ||
31 | |||
32 | /usr/lib/libsqlite3.so.* mr, | ||
33 | |||
34 | /usr/lib/locale/locale-archive r, | ||
35 | |||
36 | /usr/share/locale/locale-alias r, | ||
37 | |||
38 | /usr/local/lib/gnunet/libexec/gnunet-service-arm mr, | ||
39 | |||
40 | /usr/local/lib/gnunet/ r, | ||
41 | |||
42 | /usr/local/lib/gnunet/libexec/ r, | ||
43 | |||
44 | #Gnunet daemon | ||
45 | /usr/local/lib/gnunet/libexec/gnunet-daemon-exit Px, | ||
46 | /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist Px, | ||
47 | /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger Px, | ||
48 | /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px, | ||
49 | /usr/local/lib/gnunet/libexec/gnunet-daemon-topology Px, | ||
50 | /usr/local/lib/gnunet/libexec/gnunet-daemon-pt Px, | ||
51 | |||
52 | /usr/local/lib/gnunet/libexec/gnunet-dns2gns Px, | ||
53 | |||
54 | /usr/local/lib/gnunet/libexec/gnunet-gns-proxy Px, | ||
55 | |||
56 | /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd Px, | ||
57 | |||
58 | #Gnunet service | ||
59 | /usr/local/lib/gnunet/libexec/gnunet-service-ats Px, | ||
60 | /usr/local/lib/gnunet/libexec/gnunet-service-cadet Px, | ||
61 | /usr/local/lib/gnunet/libexec/gnunet-service-core Px, | ||
62 | /usr/local/lib/gnunet/libexec/gnunet-service-conversation Px, | ||
63 | /usr/local/lib/gnunet/libexec/gnunet-service-datastore Px, | ||
64 | /usr/local/lib/gnunet/libexec/gnunet-service-dht Px, | ||
65 | /usr/local/lib/gnunet/libexec/gnunet-service-dns Px, | ||
66 | /usr/local/lib/gnunet/libexec/gnunet-service-fs Px, | ||
67 | /usr/local/lib/gnunet/libexec/gnunet-service-gns Px, | ||
68 | /usr/local/lib/gnunet/libexec/gnunet-service-identity Px, | ||
69 | /usr/local/lib/gnunet/libexec/gnunet-service-mesh Px, | ||
70 | /usr/local/lib/gnunet/libexec/gnunet-service-namecache Px, | ||
71 | /usr/local/lib/gnunet/libexec/gnunet-service-namestore Px, | ||
72 | /usr/local/lib/gnunet/libexec/gnunet-service-nse Px, | ||
73 | /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo Px, | ||
74 | /usr/local/lib/gnunet/libexec/gnunet-service-peerstore Px, | ||
75 | /usr/local/lib/gnunet/libexec/gnunet-service-regex Px, | ||
76 | /usr/local/lib/gnunet/libexec/gnunet-service-resolver Px, | ||
77 | /usr/local/lib/gnunet/libexec/gnunet-service-revocation Px, | ||
78 | /usr/local/lib/gnunet/libexec/gnunet-service-set Px, | ||
79 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px, | ||
80 | /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px, | ||
81 | /usr/local/lib/gnunet/libexec/gnunet-service-statistics Px, | ||
82 | /usr/local/lib/gnunet/libexec/gnunet-service-template Px, | ||
83 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px, | ||
84 | /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger Px, | ||
85 | /usr/local/lib/gnunet/libexec/gnunet-service-transport Px, | ||
86 | /usr/local/lib/gnunet/libexec/gnunet-service-vpn Px, | ||
87 | |||
88 | #Gnunet helper | ||
89 | /usr/local/lib/gnunet/libexec/gnunet-helper-dns r, | ||
90 | |||
91 | #Gnunet librairies | ||
92 | /usr/local/lib/libgnunetats.so.* mr, | ||
93 | /usr/local/lib/libgnunetcadet.so.* mr, | ||
94 | /usr/local/lib/libgnunetdht.so.* mr, | ||
95 | /usr/local/lib/libgnunetdnsstub.so.* mr, | ||
96 | /usr/local/lib/libgnunetgnsrecord.so.* r, | ||
97 | /usr/local/lib/libgnunethello.so.* mr, | ||
98 | /usr/local/lib/libgnunetnamecache.so.* r, | ||
99 | /usr/local/lib/libgnunetpeerstore.so.* mr, | ||
100 | /usr/local/lib/libgnunetregex.so.* mr, | ||
101 | /usr/local/lib/libgnunetset.so.* mr, | ||
102 | /usr/local/lib/libgnunetstatistics.so.* mr, | ||
103 | /usr/local/lib/libgnunettransport.so.* mr, | ||
104 | /usr/local/lib/libgnunettun.so.* mr, | ||
105 | |||
106 | #Gnunet plugin | ||
107 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, | ||
108 | /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, | ||
109 | } | ||