feat: support for debian 12, drop support for debian 11.

2024-11-14 23:43:56 +01:00 · 2023-06-18 11:44:56 +01:00 · 2023-06-18 11:44:56 +01:00 · a1946aa171
commit a1946aa171
parent a78f6c7757
7 changed files with 2 additions and 97 deletions
--- a/README.md
+++ b/README.md
@ -31,7 +31,7 @@ most Linux based applications and processes.
 - Support all distributions that support AppArmor:
    * Archlinux
    * Ubuntu 22.04
-    * Debian 11
+    * Debian 12
    * OpenSUSE Tumbleweed
 - Support all major desktop environments:
    * Currently only Gnome
--- a/cmd/prebuild/main.go
+++ b/cmd/prebuild/main.go
@ -11,7 +11,6 @@ import (
 	"github.com/roddhjav/apparmor.d/pkg/logging"
 	"github.com/roddhjav/apparmor.d/pkg/prebuild"
 	"golang.org/x/exp/slices"
 )
 const usage = `prebuild [-h] [--full] [--complain]
@ -48,9 +47,6 @@ func aaPrebuild() error {
 	if complain {
 		prebuild.Builds = append(prebuild.Builds, prebuild.BuildComplain)
 	}
 	if slices.Contains([]string{"debian", "whonix"}, prebuild.Distribution) {
 		prebuild.Builds = append(prebuild.Builds, prebuild.BuildABI)
 	}
 	if err := prebuild.Prepare(); err != nil {
 		return err
@ -65,9 +61,6 @@ func aaPrebuild() error {
 	if complain {
 		logging.Bullet("Set complain flag on all profiles")
 	}
 	if slices.Contains([]string{"debian", "whonix"}, prebuild.Distribution) {
 		logging.Bullet("%s does not support abi 3.0 yet", prebuild.Distribution)
 	}
 	return nil
 }
--- a/dists/debian/abstractions/gtk
+++ b/dists/debian/abstractions/gtk
@ -1,53 +0,0 @@
 # vim:syntax=apparmor
 # ------------------------------------------------------------------
 #
 #    This program is free software; you can redistribute it and/or
 #    modify it under the terms of version 2 of the GNU General Public
 #    License published by the Free Software Foundation.
 #
 # ------------------------------------------------------------------
  /usr/share/themes/{,**} r,
  /usr/share/gtksourceview-[0-9]*/{,**} r,
  /usr/share/gtk-2.0/ r,
  /usr/share/gtk-2.0/gtkrc r,
  /usr/share/gtk-3.0/ r,
  /usr/share/gtk-3.0/settings.ini r,
  /etc/gtk-2.0/ r,
  /etc/gtk-2.0/gtkrc r,
  /etc/gtk-3.0/ r,
  /etc/gtk-3.0/*.conf r,
  /etc/gtk/gtkrc r,
  owner @{HOME}/.themes/{,**} r,
  owner @{HOME}/.local/share/themes/{,**} r,
  owner @{HOME}/.gtk r,
  owner @{HOME}/.gtkrc r,
  owner @{HOME}/.gtkrc-2.0 r,
  owner @{HOME}/.gtk-bookmarks r,
  owner @{HOME}/.config/gtkrc r,
  owner @{HOME}/.config/gtkrc-2.0 r,
  owner @{HOME}/.config/gtk-3.0/ rw,
  owner @{HOME}/.config/gtk-3.0/settings.ini r,
  owner @{HOME}/.config/gtk-3.0/bookmarks r,
  owner @{HOME}/.config/gtk-3.0/gtk.css r,
  # for gtk file dialog
  owner @{HOME}/.config/gtk-2.0/ rw,
  owner @{HOME}/.config/gtk-2.0/gtkfilechooser.ini* rw,
  # .Xauthority file required for X connections
  owner @{HOME}/.Xauthority r,
  # Xsession errors file
  owner @{HOME}/.xsession-errors w,
  # Include additions to the abstraction
  include if exists <abstractions/gtk.d>
--- a/dists/debian/tunables/multiarch.d/etc
+++ b/dists/debian/tunables/multiarch.d/etc
@ -1,21 +0,0 @@
 # ------------------------------------------------------------------
 #
 #    Copyright (C) 2020 Christian Boltz
 #
 #    This program is free software; you can redistribute it and/or
 #    modify it under the terms of version 2 of the GNU General Public
 #    License published by the Free Software Foundation.
 #
 # ------------------------------------------------------------------
 # @{etc_ro} contains a space-separated list of the system configuration directories.
 # Traditionally this means /etc/, but when using a read-only / filesystem and/or
 # with the goal of having only user-modified config files in /etc/, directories
 # like /usr/etc/ get introduced for storing the default config.
 # @{etc_ro} contains read-only directories with configuration files.
 # Do not use @{etc_ro} in rules that allow write access.
@{etc_ro}=/etc/ /usr/etc/
 # @{etc_rw} contains directories where writing to configuration files is allowed.
@{etc_rw}=/etc/
--- a/docs/index.md
+++ b/docs/index.md
@ -31,7 +31,7 @@ See the [Concepts](concepts) page for more detail on the architecture.
 - Support all distributions that support AppArmor:
    * [:material-arch: Archlinux](/install/#archlinux)
    * [:material-ubuntu: Ubuntu 22.04](/install/#ubuntu-debian)
-    * [:material-debian: Debian 11](/install/#ubuntu-debian)
+    * [:material-debian: Debian 12](/install/#ubuntu-debian)
    * [:simple-suse: OpenSUSE Tumbleweed](/install/#opensuse)
 - Support all major desktop environments:
    * Currently only :material-gnome: Gnome
--- a/pkg/prebuild/build.go
+++ b/pkg/prebuild/build.go
@ -28,7 +28,6 @@ type BuildFunc func(string) string
 // Set complain flag on all profiles
 func BuildComplain(profile string) string {
 	flags := []string{}
 	matches := regFlag.FindStringSubmatch(profile)
 	if len(matches) != 0 {
@ -58,8 +57,3 @@ func BuildUserspace(profile string) string {
 	}
 	return profile
 }
 // Remove abi header for distributions that do not support it
 func BuildABI(profile string) string {
 	return regABI.ReplaceAllLiteralString(profile, "")
 }
--- a/pkg/prebuild/prepare.go
+++ b/pkg/prebuild/prepare.go
@ -132,14 +132,6 @@ func Configure() (err error) {
 		if err := copyTo(DistDir.Join("ubuntu"), RootApparmord); err != nil {
 			return err
 		}
 		if Distribution == "ubuntu" {
 			break
 		}
 		// Copy debian specific profiles
 		if err := copyTo(DistDir.Join("debian"), RootApparmord); err != nil {
 			return err
 		}
 	default:
 		return fmt.Errorf("%s is not a supported distribution", Distribution)