aboutsummaryrefslogtreecommitdiff
path: root/contrib/apparmor/gnunet-service-arm
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/apparmor/gnunet-service-arm')
-rw-r--r--contrib/apparmor/gnunet-service-arm109
1 files changed, 109 insertions, 0 deletions
diff --git a/contrib/apparmor/gnunet-service-arm b/contrib/apparmor/gnunet-service-arm
new file mode 100644
index 000000000..5428c3ca9
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-arm
@@ -0,0 +1,109 @@
1# Last Modified: Thu Jul 9 10:27:23 2015
2#include <tunables/global>
3#include <tunables/gnunet>
4
5profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm {
6 #include <abstractions/gnunet-common>
7
8 /dev/null ra,
9
10 /tmp/gnunet-*-runtime/ rw,
11 /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw,
12 /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw,
13 /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw,
14 /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw,
15
16 /tmp/gnunet-system-runtime/ rw,
17 /tmp/gnunet-system-runtime/gnunet-service-*.sock rw,
18 /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw,
19 /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw,
20
21 /var/lib/gnunet/.local/share/gnunet/ r,
22 /var/lib/gnunet/.local/share/gnunet/revocation.dat r,
23 /var/lib/gnunet/.local/share/gnunet/peerstore/ a,
24 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk,
25 /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw,
26 /var/lib/gnunet/.config/gnunet.conf r,
27
28 #Librairies
29 /usr/lib/ld-*.so r,
30 /usr/lib/libpthread-*.so mr,
31
32 /usr/lib/libsqlite3.so.* mr,
33
34 /usr/lib/locale/locale-archive r,
35
36 /usr/share/locale/locale-alias r,
37
38 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm mr,
39
40 @{GNUNET_PREFIX}/lib/gnunet/ r,
41
42 @{GNUNET_PREFIX}/lib/gnunet/libexec/ r,
43
44 #Gnunet daemon
45 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit Px,
46 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist Px,
47 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger Px,
48 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px,
49 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology Px,
50 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt Px,
51
52 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns Px,
53
54 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy Px,
55
56 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd Px,
57
58 #Gnunet service
59 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats Px,
60 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet Px,
61 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core Px,
62 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation Px,
63 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore Px,
64 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht Px,
65 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns Px,
66 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs Px,
67 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns Px,
68 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity Px,
69 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh Px,
70 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache Px,
71 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore Px,
72 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse Px,
73 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo Px,
74 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore Px,
75 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex Px,
76 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver Px,
77 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation Px,
78 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set Px,
79 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px,
80 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px,
81 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics Px,
82 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template Px,
83 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px,
84 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger Px,
85 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport Px,
86 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn Px,
87
88 #Gnunet helper
89 @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns r,
90
91 #Gnunet librairies
92 @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr,
93 @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
94 @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr,
95 @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr,
96 @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* r,
97 @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr,
98 @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* r,
99 @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr,
100 @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
101 @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr,
102 @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
103 @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr,
104 @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
105
106 #Gnunet plugin
107 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r,
108 @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr,
109}