apparmor.d/pkg/prebuild/builder/fsp.go

// apparmor.d - Full set of apparmor profiles
// Copyright (C) 2021-2024 Alexandre Pujol <alexandre@pujol.io>
// SPDX-License-Identifier: GPL-2.0-only

package builder

import (
	"github.com/roddhjav/apparmor.d/pkg/prebuild"
	"github.com/roddhjav/apparmor.d/pkg/util"
)

var (
	regFullSystemPolicy = util.ToRegexRepl([]string{
		`r(PU|U)x,`, `rPx,`,
	})
)

type FullSystemPolicy struct {
	prebuild.Base
}

func init() {
	RegisterBuilder(&FullSystemPolicy{
		Base: prebuild.Base{
			Keyword: "fsp",
			Msg:     "Prevent unconfined transitions in profile rules",
		},
	})
}

func (b FullSystemPolicy) Apply(opt *Option, profile string) (string, error) {
	return regFullSystemPolicy.Replace(profile), nil
}
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-26 00:16:00 +01:00			`// apparmor.d - Full set of apparmor profiles`
			`// Copyright (C) 2021-2024 Alexandre Pujol <alexandre@pujol.io>`
			`// SPDX-License-Identifier: GPL-2.0-only`

			`package builder`

			`import (`
build: reorganise build: abi4, fallback, prebuild cli - ABI4 by default, fallback to abi 3. - aa-prebuild cli that can be used by other project shipping profiles. - --file option to cli to only build one dev profile. - add abi version filter to only & exclude directives. 2024-10-02 17:22:46 +02:00			`"github.com/roddhjav/apparmor.d/pkg/prebuild"`
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-26 00:16:00 +01:00			`"github.com/roddhjav/apparmor.d/pkg/util"`
			`)`

			`var (`
			`regFullSystemPolicy = util.ToRegexRepl([]string{`
			`r(PU\|U)x,`, `rPx,`,
			`})`
			`)`

			`type FullSystemPolicy struct {`
build: reorganise build: abi4, fallback, prebuild cli - ABI4 by default, fallback to abi 3. - aa-prebuild cli that can be used by other project shipping profiles. - --file option to cli to only build one dev profile. - add abi version filter to only & exclude directives. 2024-10-02 17:22:46 +02:00			`prebuild.Base`
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-26 00:16:00 +01:00			`}`

			`func init() {`
			`RegisterBuilder(&FullSystemPolicy{`
build: reorganise build: abi4, fallback, prebuild cli - ABI4 by default, fallback to abi 3. - aa-prebuild cli that can be used by other project shipping profiles. - --file option to cli to only build one dev profile. - add abi version filter to only & exclude directives. 2024-10-02 17:22:46 +02:00			`Base: prebuild.Base{`
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-26 00:16:00 +01:00			`Keyword: "fsp",`
			`Msg: "Prevent unconfined transitions in profile rules",`
			`},`
			`})`
			`}`

feat(prebuild): add builder opt to build tasks. 2024-05-25 23:32:10 +02:00			`func (b FullSystemPolicy) Apply(opt *Option, profile string) (string, error) {`
feat(prebuild): add err reporting to builder & directive tasks. 2024-05-25 23:30:20 +02:00			`return regFullSystemPolicy.Replace(profile), nil`
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-26 00:16:00 +01:00			`}`