apparmor.d/pkg/aa/templates/rules.j2

{{- /* apparmor.d - Full set of apparmor profiles */ -}}
{{- /* Copyright (C) 2021-2024 Alexandre Pujol <alexandre@pujol.io> */ -}}
{{- /* SPDX-License-Identifier: GPL-2.0-only */ -}}

{{- define "rules" -}}

    {{- $oldkind := "" -}}
    {{- range . -}}
        {{- $kind := kindof . -}}
        {{- if eq $kind "" -}}
            {{- "\n" -}}
            {{- continue -}}
        {{- end -}}
        {{- if eq $kind "comment" -}}
            {{- template "comment" . -}}
            {{- "\n" -}}
            {{- continue -}}
        {{- end -}}

        {{- if and (ne $kind $oldkind) (ne $oldkind "") -}}
            {{- "\n" -}}
        {{- end -}}
        {{- indent "" -}}

        {{- if eq $kind "abi" -}}
            {{- template "abi" . -}}
        {{- end -}}

        {{- if eq $kind "alias" -}}
            {{- template "alias" . -}}
        {{- end -}}

        {{- if eq $kind "include" -}}
            {{- template "include" . -}}
        {{- end -}}

        {{- if eq $kind "variable" -}}
            {{- template "variable" . -}}
        {{- end -}}

        {{- if eq $kind "all" -}}
            {{- template "all" . -}}
        {{- end -}}

        {{- if eq $kind "rlimit" -}}
            {{- template "rlimit" . -}}
        {{- end -}}

        {{- if eq $kind "userns" -}}
            {{- template "userns" . -}}
        {{- end -}}

        {{- if eq $kind "capability" -}}
            {{- template "capability" . -}}
        {{- end -}}

        {{- if eq $kind "network" -}}
            {{- template "network" . -}}
        {{- end -}}

        {{- if eq $kind "mount" -}}
            {{- template "mount" . -}}
        {{- end -}}

        {{- if eq $kind "remount" -}}
            {{- template "remount" . -}}
        {{- end -}}

        {{- if eq $kind "umount" -}}
            {{- template "umount" . -}}
        {{- end -}}

        {{- if eq $kind "pivot_root" -}}
            {{- template "pivot_root" . -}}
        {{- end -}}

        {{- if eq $kind "change_profile" -}}
            {{- template "change_profile" . -}}
        {{- end -}}

        {{- if eq $kind "mqueue" -}}
            {{- template "mqueue" . -}}
        {{- end -}}

        {{- if eq $kind "io_uring" -}}
            {{- template "io_uring" . -}}
        {{- end -}}

        {{- if eq $kind "unix" -}}
            {{- template "unix" . -}}
        {{- end -}}

        {{- if eq $kind "ptrace" -}}
            {{- template "ptrace" . -}}
        {{- end -}}

        {{- if eq $kind "signal" -}}
            {{- template "signal" . -}}
        {{- end -}}

        {{- if eq $kind "dbus" -}}
            {{- template "dbus" . -}}
        {{- end -}}

        {{- if eq $kind "file" -}}
            {{- template "file" . -}}
        {{- end -}}

        {{- if eq $kind "link" -}}
            {{- template "link" . -}}
        {{- end -}}

        {{- if eq $kind "profile" -}}
            {{- template "profile" . -}}
        {{- end -}}

        {{- if eq $kind "hat" -}}
            {{- template "hat" . -}}
        {{- end -}}

        {{- "\n" -}}
        {{- $oldkind = $kind -}}
    {{- end -}}

{{- end -}}
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- /* apparmor.d - Full set of apparmor profiles */ -}}`
			`{{- /* Copyright (C) 2021-2024 Alexandre Pujol <alexandre@pujol.io> */ -}}`
			`{{- /* SPDX-License-Identifier: GPL-2.0-only */ -}}`

			`{{- define "rules" -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- $oldkind := "" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- range . -}}`
feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- $kind := kindof . -}}`
			`{{- if eq $kind "" -}}`
feat(aa): make preamble rule classic aa rules. 2024-05-05 00:25:55 +02:00			`{{- "\n" -}}`
			`{{- continue -}}`
			`{{- end -}}`
feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "comment" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "comment" . -}}`
			`{{- "\n" -}}`
			`{{- continue -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if and (ne $kind $oldkind) (ne $oldkind "") -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- "\n" -}}`
			`{{- end -}}`
			`{{- indent "" -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "abi" -}}`
feat(aa): make preamble rule classic aa rules. 2024-05-05 00:25:55 +02:00			`{{- template "abi" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "alias" -}}`
feat(aa): make preamble rule classic aa rules. 2024-05-05 00:25:55 +02:00			`{{- template "alias" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "include" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "include" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "variable" -}}`
feat(aa): make preamble rule classic aa rules. 2024-05-05 00:25:55 +02:00			`{{- template "variable" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "all" -}}`
feat(aa): add some missing rule template. 2024-04-25 15:01:04 +02:00			`{{- template "all" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "rlimit" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "rlimit" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "userns" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "userns" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "capability" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "capability" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "network" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "network" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "mount" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "mount" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "remount" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "remount" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "umount" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "umount" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "pivot_root" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "pivot_root" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "change_profile" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "change_profile" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "mqueue" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "mqueue" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "io_uring" -}}`
feat(aa): add some missing rule template. 2024-04-25 15:01:04 +02:00			`{{- template "io_uring" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "unix" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "unix" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "ptrace" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "ptrace" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "signal" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "signal" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "dbus" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "dbus" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "file" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "file" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "link" -}}`
feat(aa): add the link rule. 2024-05-25 22:56:28 +02:00			`{{- template "link" . -}}`
			`{{- end -}}`

feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- if eq $kind "profile" -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- template "profile" . -}}`
			`{{- end -}}`

feat(aa): add the hat template. 2024-05-28 19:16:21 +02:00			`{{- if eq $kind "hat" -}}`
			`{{- template "hat" . -}}`
			`{{- end -}}`

feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- "\n" -}}`
feat(aa): add the Kind struct to manage aa rules. 2024-05-28 19:15:22 +02:00			`{{- $oldkind = $kind -}}`
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 22:27:35 +02:00			`{{- end -}}`

			`{{- end -}}`