interfaces: add /proc/version_signature to appamor template

[arges]

Allow access to /proc/version_signature to be able to easily read kernel version
and build number.

Signed-off-by: Chris J Arges chris.j.arges@canonical.com

[arges]

I have no idea why autopkgtest failed:

# cd .; git clone https://github.com/kisielk/gotool /tmp/adt-run.rNJcbF/integrationtests-artifacts/build/src/github.com/kisielk/gotool
Cloning into '/tmp/adt-run.rNJcbF/integrationtests-artifacts/build/src/github.com/kisielk/gotool'...
fatal: unable to access 'https://github.com/kisielk/gotool/': Received HTTP code 504 from proxy after CONNECT
package github.com/kisielk/gotool: exit status 128

Looks like some sort of connectivity issue? This wasn't added by my patch.

[mvo5]

👍

[niemeyer]

Why is it a good idea to expose this to every single application?

[niemeyer]

Chris, to avoid much back and forth on this, please merge both this and the lspci on the kernel-modules interface itself. We'll probably need a few tweaks on the latter such as naming/etc, but this puts you much closer to finalizing your needs, and it's totally fine for an app that has access to loading arbitrary kernel modules to also have access to these details, obviously.

[jdstrand]

This could also go in system-observe.