logo

apparmor.d

Unnamed repository; edit this file 'description' to name the repository. git clone https://anongit.hacktivis.me/git/apparmor.d.git/

usr.bin.badwolf (1104B)

    

  1. # Copyright 2020 Haelwenn (lanodan) Monnier <contact+apparmor.d@hacktivis.me>
  2. # Distributed under the terms of the GNU General Public License v2
  4. # BadWolf: Minimalist and privacy-oriented WebKitGTK+ browser
  5. # Copyright © 2019-2020 Badwolf Authors <https://hacktivis.me/projects/badwolf>
  6. # SPDX-License-Identifier: BSD-3-Clause
  7. #
  8. # Made on Gentoo Linux with PREFIX=/usr
  9. #include <tunables/global>
  11. /usr/bin/badwolf {
  12. 	#include <abstractions/base>
  13. 	#include <abstractions/consoles>
  14. 	#include <abstractions/enchant>
  15. 	#include <abstractions/gnome>
  16. 	#include <abstractions/ibus>
  17. 	# #include <abstractions/uim>
  18. 	#include <abstractions/private-files-strict>
  20. 	/usr/bin/badwolf mr,
  21. 	/usr/libexec/webkit2gtk-4.0/WebKitNetworkProcess Px,
  22. 	/usr/libexec/webkit2gtk-4.0/WebKitWebProcess Px,
  24. 	# Consider that the bwrap sandbox on itself is enough
  25. 	/usr/bin/bwrap Ux,
  27. 	owner @{PROC}/@{pid}/cmdline r,
  28. 	owner @{PROC}/@{pid}/fd/ r,
  30. 	owner @{HOME}/.local/share/badwolf/ r,
  31. 	owner @{HOME}/.local/share/badwolf/** r,
  33. 	deny @{HOME}/.local/share/webkitgtk/** rwmlk,
  35. 	/ r,
  36. 	/** r,
  38. 	# #include <local/usr.bin.badwolf>
  39. }