1 files changed, 28 insertions, 0 deletions
diff --git a/contrib/apparmor/gnunet-service-vpn b/contrib/apparmor/gnunet-service-vpn
new file mode 100644
index 000000000..56845568e
--- /dev/null
+++ b/contrib/apparmor/gnunet-service-vpn
@@ -0,0 +1,28 @@
+# Last Modified: Mon Jul 20 11:20:57 2015
+#include <tunables/global>
+#include <tunables/gnunet>
+profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn {
+  #include <abstractions/gnunet-common>
+  
+  #Capability
+  capability setuid,
+  capability net_admin,
+  /dev/net/tun rw,
+  @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn mr,
+  #Librairies
+  /usr/lib/ld-*.so r,
+  #Gnunet helper
+  @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn Px,
+  
+  #Gnunet librairies
+  @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
+  @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
+  @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
+  @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
+  @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
+}

diff --git a/contrib/apparmor/gnunet-service-vpn b/contrib/apparmor/gnunet-service-vpn new file mode 100644 index 000000000..56845568e --- /dev/null +++ b/contrib/apparmor/gnunet-service-vpn
@@ -0,0 +1,28 @@
	1	# Last Modified: Mon Jul 20 11:20:57 2015
	2	#include <tunables/global>
	3	#include <tunables/gnunet>
	4
	5	profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn {
	6	#include <abstractions/gnunet-common>
	7
	8	#Capability
	9	capability setuid,
	10	capability net_admin,
	11
	12	/dev/net/tun rw,
	13
	14	@{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn mr,
	15
	16	#Librairies
	17	/usr/lib/ld-*.so r,
	18
	19	#Gnunet helper
	20	@{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn Px,
	21
	22	#Gnunet librairies
	23	@{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr,
	24	@{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr,
	25	@{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr,
	26	@{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr,
	27	@{GNUNET_PREFIX}/lib/libgnunettun.so.* mr,
	28	}