5
0
mirror of https://github.com/cwinfo/yggdrasil-go.git synced 2024-11-25 12:41:35 +00:00
yggdrasil-go/contrib/apparmor/usr.bin.yggdrasil

26 lines
514 B
Plaintext
Raw Normal View History

2020-03-10 14:47:41 +00:00
# Last Modified: Tue Mar 10 16:38:14 2020
2019-03-09 13:15:14 +00:00
#include <tunables/global>
/usr/bin/yggdrasil {
#include <abstractions/base>
capability net_admin,
2020-03-10 14:47:41 +00:00
capability net_raw,
2019-03-09 13:15:14 +00:00
network inet stream,
network inet dgram,
2019-03-09 13:15:14 +00:00
network inet6 dgram,
network inet6 stream,
network netlink raw,
/lib/@{multiarch}/ld-*.so mr,
2019-03-09 13:15:14 +00:00
/proc/sys/net/core/somaxconn r,
2020-03-10 14:47:41 +00:00
owner /sys/kernel/mm/transparent_hugepage/hpage_pmd_size r,
2019-03-09 13:15:14 +00:00
/dev/net/tun rw,
/usr/bin/yggdrasil mr,
/etc/yggdrasil.conf rw,
/run/yggdrasil.sock rw,
}