85 lines
3.4 KiB
Diff
85 lines
3.4 KiB
Diff
From ea7b201ba48b87469297d58751c57b03ceb82320 Mon Sep 17 00:00:00 2001
|
|
From: Christian Boltz <apparmor@cboltz.de>
|
|
Date: Wed, 11 Aug 2021 21:37:40 +0200
|
|
Subject: [PATCH] Update abstractions/python and profiles for python 3.10
|
|
|
|
Fixes: https://gitlab.com/apparmor/apparmor/-/issues/187
|
|
---
|
|
profiles/apparmor.d/abstractions/python | 18 +++++++++---------
|
|
profiles/apparmor.d/lsb_release | 2 +-
|
|
.../profiles/extras/usr.bin.chromium-browser | 4 ++--
|
|
3 files changed, 12 insertions(+), 12 deletions(-)
|
|
|
|
diff --git a/profiles/apparmor.d/abstractions/python b/profiles/apparmor.d/abstractions/python
|
|
index 1b5cc9d0d..727030bdf 100644
|
|
--- a/profiles/apparmor.d/abstractions/python
|
|
+++ b/profiles/apparmor.d/abstractions/python
|
|
@@ -12,18 +12,18 @@
|
|
|
|
abi <abi/3.0>,
|
|
|
|
- /usr/lib{,32,64}/python{2.[4-7],3.[0-9]}/**.{pyc,so} mr,
|
|
- /usr/lib{,32,64}/python{2.[4-7],3.[0-9]}/**.{egg,py,pth} r,
|
|
- /usr/lib{,32,64}/python{2.[4-7],3.[0-9]}/{site,dist}-packages/ r,
|
|
+ /usr/lib{,32,64}/python{2.[4-7],3.[0-9],3.1[0-9]}/**.{pyc,so} mr,
|
|
+ /usr/lib{,32,64}/python{2.[4-7],3.[0-9],3.1[0-9]}/**.{egg,py,pth} r,
|
|
+ /usr/lib{,32,64}/python{2.[4-7],3.[0-9],3.1[0-9]}/{site,dist}-packages/ r,
|
|
/usr/lib{,32,64}/python3.[0-9]/lib-dynload/*.so mr,
|
|
|
|
- /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9]}/**.{pyc,so} mr,
|
|
- /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9]}/**.{egg,py,pth} r,
|
|
- /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9]}/{site,dist}-packages/ r,
|
|
- /usr/local/lib{,32,64}/python3.[0-9]/lib-dynload/*.so mr,
|
|
+ /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9],3.1[0-9]}/**.{pyc,so} mr,
|
|
+ /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9],3.1[0-9]}/**.{egg,py,pth} r,
|
|
+ /usr/local/lib{,32,64}/python{2.[4-7],3,3.[0-9],3.1[0-9]}/{site,dist}-packages/ r,
|
|
+ /usr/local/lib{,32,64}/python3.{1,}[0-9]/lib-dynload/*.so mr,
|
|
|
|
# Site-wide configuration
|
|
- /etc/python{2.[4-7],3.[0-9]}/** r,
|
|
+ /etc/python{2.[4-7],3.[0-9],3.1[0-9]}/** r,
|
|
|
|
# shared python paths
|
|
/usr/share/{pyshared,pycentral,python-support}/** r,
|
|
@@ -36,7 +36,7 @@
|
|
/usr/lib/wx/python/*.pth r,
|
|
|
|
# python build configuration and headers
|
|
- /usr/include/python{2.[4-7],3.[0-9]}*/pyconfig.h r,
|
|
+ /usr/include/python{2.[4-7],3.[0-9],3.1[0-9]}*/pyconfig.h r,
|
|
|
|
# Include additions to the abstraction
|
|
include if exists <abstractions/python.d>
|
|
diff --git a/profiles/apparmor.d/lsb_release b/profiles/apparmor.d/lsb_release
|
|
index 33a1c71db..ad8b998fc 100644
|
|
--- a/profiles/apparmor.d/lsb_release
|
|
+++ b/profiles/apparmor.d/lsb_release
|
|
@@ -18,7 +18,7 @@ profile lsb_release {
|
|
/dev/tty rw,
|
|
|
|
/usr/bin/lsb_release r,
|
|
- /usr/bin/python3.[0-9] mr,
|
|
+ /usr/bin/python3.{1,}[0-9] mr,
|
|
|
|
/etc/debian_version r,
|
|
/etc/default/apport r,
|
|
diff --git a/profiles/apparmor/profiles/extras/usr.bin.chromium-browser b/profiles/apparmor/profiles/extras/usr.bin.chromium-browser
|
|
index 2df5338db..b47b6f721 100644
|
|
--- a/profiles/apparmor/profiles/extras/usr.bin.chromium-browser
|
|
+++ b/profiles/apparmor/profiles/extras/usr.bin.chromium-browser
|
|
@@ -267,9 +267,9 @@ profile chromium_browser /usr/lib/@{chromium}/@{chromium} flags=(attach_disconne
|
|
/usr/share/distro-info/** r,
|
|
/var/lib/dpkg/** r,
|
|
|
|
- /usr/local/lib/python3.[0-9]/dist-packages/ r,
|
|
+ /usr/local/lib/python3.{1,}[0-9]/dist-packages/ r,
|
|
/usr/bin/ r,
|
|
- /usr/bin/python3.[0-9] mr,
|
|
+ /usr/bin/python3.{1,}[0-9] mr,
|
|
}
|
|
|
|
profile sandbox {
|
|
--
|
|
GitLab
|
|
|