Commit graph

3032 commits

Author SHA1 Message Date
Alexandre Pujol
081399a160
tests: remove tests from the vendored paths module. 2024-10-19 22:55:17 +01:00
Alexandre Pujol
c59086311b
tests: rewrite the way to generate integration tests. 2024-10-19 22:50:09 +01:00
Alexandre Pujol
f079792aee
feat(tunable): make the extensions easier to read.
Some checks failed
Ubuntu / build (default, ubuntu-22.04) (push) Has been cancelled
Ubuntu / build (default, ubuntu-24.04) (push) Has been cancelled
Ubuntu / build (full-system-policy, ubuntu-22.04) (push) Has been cancelled
Ubuntu / build (full-system-policy, ubuntu-24.04) (push) Has been cancelled
2024-10-17 23:44:55 +01:00
odomingao
93269e0596 Small fix 2024-10-17 21:05:33 +00:00
odomingao
7f83fe45be Add capital letters 2024-10-17 21:05:33 +00:00
odomingao
2f968f4221 Create extensions 2024-10-17 21:05:33 +00:00
b8c052201b YubiKey support for sudo
- the yubikey is a u2f usb device, so usb abstraction is required
- the authentication with yubikey against sudo happens as challenge response, which is why rw on the challenge file is required
- the elevator first checks whether a .yubico folder exists, which is why reading the folder (but not the files within) is required
2024-10-17 21:02:47 +00:00
Alexandre Pujol
d406596124
tests: small fixes on builders scripts. 2024-10-16 23:58:48 +01:00
Alexandre Pujol
4797026e28
feat(profile): update some ui profiles.
Some checks failed
Ubuntu / build (default, ubuntu-22.04) (push) Has been cancelled
Ubuntu / build (default, ubuntu-24.04) (push) Has been cancelled
Ubuntu / build (full-system-policy, ubuntu-22.04) (push) Has been cancelled
Ubuntu / build (full-system-policy, ubuntu-24.04) (push) Has been cancelled
2024-10-16 23:53:14 +01:00
Alexandre Pujol
f993db64b9
feat(profile): update fwupd to last release. 2024-10-16 23:50:46 +01:00
Alexandre Pujol
c90d2fea94
feat(profile): update some ctl tools. 2024-10-16 23:50:16 +01:00
Alexandre Pujol
a41f85e87b
chore: fix indentation requirment. 2024-10-16 23:48:12 +01:00
Alexandre Pujol
49d10c94e4
chore: ensure app abstraction are not proposed by logprof. 2024-10-16 23:40:28 +01:00
Alexandre Pujol
d793858d26
tests(check): also checks indentation. 2024-10-16 23:38:04 +01:00
Alexandre Pujol
37bafddc80
chore: enforce indentation consistency across profile. 2024-10-16 23:36:13 +01:00
Alexandre Pujol
6e2d817805
feat(profile): update pkexec. 2024-10-16 19:22:52 +01:00
Alexandre Pujol
682c98b320
feat(profile): minor update to xdg desktop profiles. 2024-10-15 16:24:03 +01:00
Alexandre Pujol
3a6844c8ce
tests(check): also checks files header. 2024-10-15 16:18:53 +01:00
EricLin0509
04df705272 Prepare for re-attached-path 2024-10-15 11:58:44 +00:00
Alex
62d7d7af68
Merge branch 'main' into xdg-open 2024-10-14 21:05:03 +00:00
Alexandre Pujol
604e71888c
feat(tunable): remove never used hci_id. 2024-10-14 20:38:27 +01:00
Roman Beslik
1e48160292 Added app-open to xdg-open 2024-10-14 22:37:16 +03:00
Roman Beslik
6c211f4d27 Moved dbus-send to the abstraction 2024-10-14 22:20:07 +03:00
Alexandre Pujol
e73176e0c7
fix(profile): globbing fail. 2024-10-14 19:56:00 +01:00
Alexandre Pujol
ebdcb94d7e
feat(profile): update gnome profiles. 2024-10-14 19:35:37 +01:00
Alexandre Pujol
185dc96d45
feat(profile): general update. 2024-10-14 19:32:48 +01:00
Alexandre Pujol
48751f75b2
feat(profile): update kde profiles. 2024-10-14 19:20:02 +01:00
Alexandre Pujol
04e39a4789
feat(abs): update attached abstraction. 2024-10-14 16:09:19 +01:00
Alexandre Pujol
e3cb81f261
Merge branch 'main' of github.com:roddhjav/apparmor.d
* 'main' of github.com:roddhjav/apparmor.d:
  Vim; writing configuration files
  A fix for fwupdmgr
2024-10-14 15:56:40 +01:00
Alexandre Pujol
0dbc42e357
fix(profile): ensure abi3 compatibility with re-attached path.
See  #559, #558 #557 #555
2024-10-14 15:56:37 +01:00
Roman Beslik
247e84c9a9 Vim; writing configuration files 2024-10-13 22:30:44 +00:00
EricLin0509
3586e202ba A fix for fwupdmgr 2024-10-13 22:30:17 +00:00
Alexandre Pujol
5b7b921fc9
fix(profile): *-glxtest needs wayland.
fix #549
2024-10-13 23:26:54 +01:00
Alexandre Pujol
22e5367db4
fix(profile): torbrowser allow download.
fix #539
2024-10-13 23:24:50 +01:00
Roman Beslik
0525e51cde xdg-mime xdg-open xdg-settings xprop 2024-10-13 14:19:52 +03:00
Alexandre Pujol
ffeb68af3b
build: update ignore files with new ignore paths. 2024-10-12 20:58:08 +01:00
Alexandre Pujol
70d4720189
fix(build): do not install the aa helper tool 2024-10-12 20:55:14 +01:00
Alexandre Pujol
3ef6c44038
fix: small fix & cleaning. 2024-10-12 20:11:45 +01:00
Alexandre Pujol
273485217c
build: add the task to automatically attach disconnected path.
Not yet enabled on build, as the profiles still require some testing.
2024-10-12 20:08:21 +01:00
Alexandre Pujol
e90ccd214c
refractor: move CopyTo
Will be replaced by os.CopyFS with go 1.23
2024-10-12 15:40:17 +01:00
Alexandre Pujol
982c2c66aa
refractor: rename some path util function. 2024-10-12 15:31:24 +01:00
Alexandre Pujol
ebdeef152c
build: root -> share. 2024-10-11 22:31:06 +01:00
Alexandre Pujol
116272b8ad
feat(aa-log): add support for attached path. 2024-10-11 14:21:22 +01:00
Alexandre Pujol
61a27bc336
feat(profile): initial integration with attached path.
The feature is not yet enabled.

See https://apparmor.pujol.io/development/internal/#re-attached-path
2024-10-11 14:13:17 +01:00
Alexandre Pujol
5bf8c6ef0f
fix: add vim syntaxt some profiles. 2024-10-09 22:38:22 +01:00
Alexandre Pujol
75f2c0c7b8
tests: ensure vim syntax and abi are set on all profile/abs. 2024-10-09 22:26:11 +01:00
Alexandre Pujol
5585773802
chore(profile): add missing vim:syntax=apparmor in some profiles. 2024-10-09 22:21:52 +01:00
Alexandre Pujol
fc43400c26
feat(abs): add abi reference to all abstractions. 2024-10-09 22:19:01 +01:00
Alexandre Pujol
c923cc7ccf
feat(abs): use nss-systemd in nameservice-strict. 2024-10-09 21:37:26 +01:00
Alexandre Pujol
68127c3859
build: allow to run prebuild outside of this project. 2024-10-09 14:03:54 +01:00