/etc/apparmor.d/usr.lib.telepathy is in telepathy-mission-control-5 1:5.12.0-0ubuntu2.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 | # vim:syntax=apparmor
# Author: Jamie Strandboge <jamie@canonical.com>
#include <tunables/global>
/usr/lib/telepathy/mission-control-5 {
#include <abstractions/base>
#include <abstractions/nameservice>
#include <abstractions/user-tmp>
#include <abstractions/xdg-desktop>
/usr/share/glib-*/schemas/ r,
/usr/share/glib-*/schemas/** r,
/usr/share/telepathy/ r,
/usr/share/telepathy/** r,
/usr/lib/mission-control-plugins.*/ r,
/usr/lib/mission-control-plugins.*/*.so mr,
owner @{HOME}/.mission-control/ rw,
owner @{HOME}/.mission-control/** rw,
owner @{HOME}/.cache/.mc_connections rw,
owner @{HOME}/.{cache,config}/dconf/user rw,
owner @{HOME}/.local/share/telepathy/ rw,
owner @{HOME}/.local/share/telepathy/mission-control/ rw,
owner @{HOME}/.local/share/telepathy/mission-control/* rwk,
# Site-specific additions and overrides. See local/README for details.
# Please note that accesses in local/usr.lib.telepathy are also applied to
# /usr/lib/telepathy/telepathy-*.
#include <local/usr.lib.telepathy>
}
# This could be broken out into the various binaries, but for now, ok
/usr/lib/telepathy/telepathy-* {
#include <abstractions/base>
#include <abstractions/dbus-session>
#include <abstractions/p11-kit>
#include <abstractions/nameservice>
#include <abstractions/ssl_certs>
#include <abstractions/user-tmp>
#include <abstractions/xdg-desktop>
/bin/dash ix,
/usr/bin/gconftool-2 ix,
# Maybe in abstractions?
audit deny owner /** m,
/var/lib/opencryptoki/modules/ r,
/var/lib/opencryptoki/modules/* r,
owner @{HOME}/.{cache,config}/dconf/user rw,
# from gnome abstraction
/usr/share/gvfs/remote-volume-monitors/ r,
/usr/share/gvfs/remote-volume-monitors/* r,
owner /{,var/}run/gdm/*/database r,
owner /{,var/}run/lightdm/authority/[0-9]* r,
owner @{PROC}/[0-9]*/fd/ r,
/usr/share/glib-*/schemas/ r,
/usr/share/glib-*/schemas/** r,
/etc/purple/prefs.xml r,
/usr/share/purple/ r,
/usr/share/purple/** r,
/usr/share/themes/ r,
/usr/share/themes/** r,
/usr/lib/purple*/ r,
/usr/lib/purple*/*.so mr,
/usr/lib/telepathy/*/ r,
/usr/lib/telepathy/*/*.so mr,
/usr/lib/libproxy*/*/modules/ r,
/usr/lib/libproxy*/*/modules/*.so mr,
# for telepathy-butterfly (LP: #816429)
#include <abstractions/python>
/usr/include/python{2,3}*/pyconfig.h r,
deny @{PROC}/[0-9]*/mounts r,
deny /sbin/ldconfig x,
deny /usr/bin/gcc-[0-9]* x,
/bin/uname ix,
# for telepathy-haze (LP: #867793, LP: #871497, LP: #942973)
owner @{HOME}/.config/indicators/** r,
owner @{HOME}/.config/indicators/**/ w,
owner @{HOME}/.config/indicators/messages/applications-blacklist/pidgin-libnotify* rw,
# telepathy-haze and skype
deny @{PROC}/ r,
/usr/bin/skype PUx,
owner @{HOME}/.cache/telepathy/ rw,
owner @{HOME}/.cache/telepathy/** rwk,
owner @{HOME}/.local/share/telepathy*/ rw,
owner @{HOME}/.local/share/telepathy*/** rwk,
owner @{HOME}/.cache/wocky/ rw,
owner @{HOME}/.cache/wocky/caps/ rw,
owner @{HOME}/.cache/wocky/caps/*.db{,-journal} rwk,
owner @{HOME}/.local/share/TpLogger/ rw,
owner @{HOME}/.local/share/TpLogger/** rwk,
# Site-specific additions and overrides. See local/README for details.
# Please note that accesses in local/usr.lib.telepathy are also applied to
# /usr/lib/telepathy/mission-control-5.
#include <local/usr.lib.telepathy>
}
|