mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-15 16:03:51 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
939 Commits 7 Branches 0 Tags 14 MiB
291450a050
Commit Graph

939 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Alexandre Pujol
58b96a7ba9
feat(profiles): add aptd profile. 2022-07-21 22:31:59 +01:00
Alexandre Pujol
595a27560f
feat(profiles): add mullvad profiles. 2022-07-21 20:17:03 +01:00
Alexandre Pujol
48c023d4bd
feat(profiles): containerd support for docker & cosmetic. 2022-07-21 20:15:02 +01:00
Jeroen Rijken
55bd85796c packagekitd dbus updates 2022-07-21 20:05:56 +01:00
Jeroen Rijken
137433ce6e dbus to NetworkManager 2022-07-21 20:05:56 +01:00
Jeroen Rijken
eb87e035b8 Initial containerd-shim-runc support 2022-07-21 20:05:56 +01:00
Jeroen Rijken
266d5c6dc0 Add IPV6 2022-07-21 19:46:45 +01:00
Jeroen Rijken
b404d7e4c4 Move xtables-nft to separate profile 2022-07-21 19:46:45 +01:00
Jeroen Rijken
130c562488 Allow containerd signal from k3s 2022-07-21 19:46:45 +01:00
Jeroen Rijken
61eab33cd8 Add ptrace subprofile 2022-07-21 19:46:45 +01:00
Jeroen Rijken
d6d9c943ae Add missing permission 2022-07-21 19:46:45 +01:00
Jeroen Rijken
dca33292f7 Update ruleset for clean installation. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
a1f4dbee50 First batch of cleanups based on PR comments. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
c03c624472 Allow signals from containerd to calico 2022-07-21 19:46:45 +01:00
Jeroen Rijken
8f81a39df1 Support read AppArmor profiles 2022-07-21 19:46:45 +01:00
Jeroen Rijken
560250cf5f Fix mode 2022-07-21 19:46:45 +01:00
Jeroen Rijken
2deb2a48a6 Fix name range. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
a3415dc42c Typo and calico proc. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
c84455cca4 Fixes for container network creation. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
3e006e3c76 Fix for calico unable to create network namespace. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
5565217c91 Move xtables profile to child profile of k3s. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
78cfb23bff Apply suggested fixes from PR 2022-07-21 19:46:45 +01:00
Jeroen Rijken
5af6cda328 Allow dbus messages and user database reading. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
28a3584c14 Initial support for xtables-nft-multi 2022-07-21 19:46:45 +01:00
Jeroen Rijken
463da2a8f4 Initial support for k3s 2022-07-21 19:46:45 +01:00
nobodysu
b8445e3b45 dbus style 2022-07-20 00:48:58 +03:00
Alexandre Pujol
8fda216cc2
doc: cosmetic. 2022-07-19 13:56:36 +01:00
Alexandre Pujol
f4dd2745d1
feat(profiles): add software-properties-dbus. 2022-07-19 00:03:01 +01:00
Alexandre Pujol
5b01f7963b
feat(profiles): add file-roller. 2022-07-18 23:58:12 +01:00
Alexandre Pujol
9692926752
feat(profiles): general update. 2022-07-18 23:57:25 +01:00
Jeroen Rijken
2ec802d40d Remove deny root 2022-07-18 19:45:04 +01:00
Jeroen Rijken
e9bcd3f820 Small fixes 2022-07-18 19:45:04 +01:00
Jeroen Rijken
70aa5fdbb2 Small fixes 2022-07-18 19:45:04 +01:00
Jeroen Rijken
5a02490082 Needed for certain containers like calico 2022-07-18 19:45:04 +01:00
Jeroen Rijken
13aee74df9 Various containerd fixes 2022-07-18 19:45:04 +01:00
Alexandre Pujol
c750cb1b77
feat(profiles): general update. 2022-07-18 11:36:16 +01:00
Jeroen
081308db2f
Add ZFS Event Daemon (#56) 2022-07-17 22:04:13 +00:00
Alexandre Pujol
eb6c7548f5
feat(profiles): general update. 2022-07-15 21:55:59 +01:00
Jeroen Rijken
682df516bf Make calico part of cni 2022-07-15 21:43:08 +01:00
Jeroen Rijken
02ad72b024 Allow containerd to (u)mount cni devices, and loopback to access them. 2022-07-15 21:43:08 +01:00
Jeroen Rijken
6c8e50534b Cleanup profile 
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
 2022-07-15 21:43:08 +01:00
nobodysu
2d7ec5ad2c
Update spectre-meltdown-checker (#50) 
* Update spectre-meltdown-checker
 2022-07-15 20:42:15 +00:00
Alexandre Pujol
63f1a98c37
feat(profiles): add cron-ubuntu-fan. 2022-07-10 14:30:56 +01:00
Alexandre Pujol
23642eb0be
feat(profiles): general update. 2022-07-10 14:28:44 +01:00
Alexandre Pujol
c0e62f30bb
feat(profiles): add wireguard. 2022-07-10 14:24:30 +01:00
Alexandre Pujol
d8449de55e
feat(profiles): add and merge some cni profiles. 2022-07-10 14:24:09 +01:00
Alexandre Pujol
4f7cf8d90e
Merge branch 'Jeroen0494-feat/cni' 
* Jeroen0494-feat/cni:
  Alphabetical sorting, group common options.
  Cleanup profiles according to standards
  Allow mount-zfs access to pts
  Typo
  Initramfs generation updates
  Executable updates for zpool
  Basic ZFS support
  Apply suggestions from code review
  Update CNI path, set containerd to attach_disconnected, cleanups.
  Add headers to new policies
  Syntax fixes
  Allow containerd to access SSL certs for pulling container images.
  Calico profile cleanup.
  Cleanup profiles according to standards part 1/2
  Update build instructions for Ubuntu
  Add AppArmor support to containerd
  Add CNI for containerd
 2022-07-10 13:42:30 +01:00
Alex
40d8c68f22
Merge branch 'master' into feat/cni 2022-07-10 13:41:50 +01:00
Jeroen Rijken
d10f2c073c Alphabetical sorting, group common options. 2022-07-10 13:39:01 +01:00
Jeroen Rijken
59f8b893ff Cleanup profiles according to standards 2022-07-10 13:39:01 +01:00