Codebase list onioncircuits / 1b16a91
Add apparmor profile to upstream code Ulrike Uhlig 7 years ago
1 changed file(s) with 27 addition(s) and 0 deletion(s). Raw diff Collapse all Expand all
+27
-0
apparmor/usr.bin.onioncircuits less more
0 #include <tunables/global>
1
2 /usr/bin/onioncircuits {
3 #include <abstractions/base>
4 #include <abstractions/gnome>
5 #include <abstractions/ibus>
6 #include <abstractions/nameservice>
7 #include <abstractions/python>
8
9 # Why are these not in abstractions/python?
10 /usr/lib{,32,64}/python{2,3}.[0-9]/__pycache__/ rw,
11 /usr/lib{,32,64}/python{2,3}.[0-9]/__pycache__/* rw,
12 /usr/lib{,32,64}/python{2,3}.[0-9]/**/__pycache__/ rw,
13 /usr/lib{,32,64}/python{2,3}.[0-9]/**/__pycache__/* rw,
14 /usr/lib{,32,64}/python{2,3}/**/__pycache__/ rw,
15 /usr/lib{,32,64}/python{2,3}/**/__pycache__/* rw,
16
17 /usr/bin/ r,
18 /usr/bin/onioncircuits r,
19 /usr/share/xml/iso-codes/** r,
20
21 deny /etc/machine-id r,
22
23 # Accessibility support
24 owner /{,var/}run/user/*/at-spi2-*/ rw,
25 owner /{,var/}run/user/*/at-spi2-*/** rw,
26 }