From 2e6b130728c75edfb5115ee1dc83c2e781809519 Mon Sep 17 00:00:00 2001 From: Georg Pfuetzenreuter Date: Thu, 29 Aug 2024 03:50:25 +0200 Subject: [PATCH] Add AppArmor profile Signed-off-by: Georg Pfuetzenreuter --- Makefile | 5 ++++- buddycheck.apparmor | 22 ++++++++++++++++++++++ 2 files changed, 26 insertions(+), 1 deletion(-) create mode 100644 buddycheck.apparmor diff --git a/Makefile b/Makefile index 1b7cbcc..5dc2059 100644 --- a/Makefile +++ b/Makefile @@ -10,15 +10,18 @@ PREFIX=/usr/local BINDIR=$(PREFIX)/bin MANDIR=$(PREFIX)/man +SYSCONFDIR=$(PREFIX)/etc usage: @echo 'Available targets: "install", "uninstall"' install: - install -d $(DESTDIR)$(BINDIR) $(DESTDIR)$(MANDIR)/man1 + install -d $(DESTDIR)$(BINDIR) $(DESTDIR)$(MANDIR)/man1 $(SYSCONFDIR)/apparmor.d install buddycheck.pl $(DESTDIR)$(BINDIR)/buddycheck pod2man buddycheck.1 > $(DESTDIR)$(MANDIR)/man1/buddycheck.1 + sed s?__BINDIR__?$(BINDIR)? buddycheck.apparmor > $(SYSCONFDIR)/apparmor.d/buddycheck uninstall: rm $(DESTDIR)$(BINDIR)/buddycheck rm $(DESTDIR)$(MANDIR)/man1/buddycheck.1 + rm $(SYSCONFDIR)/apparmor.d/buddycheck diff --git a/buddycheck.apparmor b/buddycheck.apparmor new file mode 100644 index 0000000..02796f5 --- /dev/null +++ b/buddycheck.apparmor @@ -0,0 +1,22 @@ +# AppArmor profile for BuddyCheck +# +# Copyright 2024, Georg Pfuetzenreuter +# +# Licensed under the EUPL, Version 1.2 or - as soon they will be approved by the European Commission - subsequent versions of the EUPL (the "Licence"). +# You may not use this work except in compliance with the Licence. +# An English copy of the Licence is shipped in a file called LICENSE along with this applications source code. +# You may obtain copies of the Licence in any of the official languages at https://joinup.ec.europa.eu/collection/eupl/eupl-text-eupl-12. + +abi , + +include + +profile buddycheck /usr/local/bin/buddycheck { + include + include + include + + /usr/bin/perl ix, + /usr/local/bin/buddycheck r, + +}