Jeroen Rijken
|
616753aea0
|
Consolidate rules
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
fcea04c69b
|
Remove complain flags
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
e724d835ed
|
Add ps to ptrace
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
e4d118365a
|
Add Kubernetes pause container
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
e6525e1f04
|
Add missing volumes
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
07f1db2725
|
Fix some typo's
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
465a31c638
|
General updates
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
33da7af6e8
|
container updates
|
2022-07-29 16:41:19 +01:00 |
|
Jeroen Rijken
|
3af11c4d16
|
ZFS updates
|
2022-07-29 16:41:19 +01:00 |
|
Alexandre Pujol
|
b55c3f7d06
|
ci: fix build image name.
|
2022-07-22 12:09:07 +01:00 |
|
Alexandre Pujol
|
7aca29b244
|
feat(profiles): initial snap support.
|
2022-07-21 22:40:06 +01:00 |
|
Alexandre Pujol
|
177d27d94c
|
feat(profiles): general update.
|
2022-07-21 22:37:17 +01:00 |
|
Alexandre Pujol
|
58b96a7ba9
|
feat(profiles): add aptd profile.
|
2022-07-21 22:31:59 +01:00 |
|
Alexandre Pujol
|
595a27560f
|
feat(profiles): add mullvad profiles.
|
2022-07-21 20:17:03 +01:00 |
|
Alexandre Pujol
|
48c023d4bd
|
feat(profiles): containerd support for docker & cosmetic.
|
2022-07-21 20:15:02 +01:00 |
|
Jeroen Rijken
|
55bd85796c
|
packagekitd dbus updates
|
2022-07-21 20:05:56 +01:00 |
|
Jeroen Rijken
|
137433ce6e
|
dbus to NetworkManager
|
2022-07-21 20:05:56 +01:00 |
|
Jeroen Rijken
|
eb87e035b8
|
Initial containerd-shim-runc support
|
2022-07-21 20:05:56 +01:00 |
|
Jeroen Rijken
|
266d5c6dc0
|
Add IPV6
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
b404d7e4c4
|
Move xtables-nft to separate profile
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
130c562488
|
Allow containerd signal from k3s
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
61eab33cd8
|
Add ptrace subprofile
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
d6d9c943ae
|
Add missing permission
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
dca33292f7
|
Update ruleset for clean installation.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
a1f4dbee50
|
First batch of cleanups based on PR comments.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
c03c624472
|
Allow signals from containerd to calico
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
8f81a39df1
|
Support read AppArmor profiles
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
560250cf5f
|
Fix mode
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
2deb2a48a6
|
Fix name range.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
a3415dc42c
|
Typo and calico proc.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
c84455cca4
|
Fixes for container network creation.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
3e006e3c76
|
Fix for calico unable to create network namespace.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
5565217c91
|
Move xtables profile to child profile of k3s.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
78cfb23bff
|
Apply suggested fixes from PR
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
5af6cda328
|
Allow dbus messages and user database reading.
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
28a3584c14
|
Initial support for xtables-nft-multi
|
2022-07-21 19:46:45 +01:00 |
|
Jeroen Rijken
|
463da2a8f4
|
Initial support for k3s
|
2022-07-21 19:46:45 +01:00 |
|
nobodysu
|
b8445e3b45
|
dbus style
|
2022-07-20 00:48:58 +03:00 |
|
Alexandre Pujol
|
8fda216cc2
|
doc: cosmetic.
|
2022-07-19 13:56:36 +01:00 |
|
Alexandre Pujol
|
f4dd2745d1
|
feat(profiles): add software-properties-dbus.
|
2022-07-19 00:03:01 +01:00 |
|
Alexandre Pujol
|
5b01f7963b
|
feat(profiles): add file-roller.
|
2022-07-18 23:58:12 +01:00 |
|
Alexandre Pujol
|
9692926752
|
feat(profiles): general update.
|
2022-07-18 23:57:25 +01:00 |
|
Jeroen Rijken
|
2ec802d40d
|
Remove deny root
|
2022-07-18 19:45:04 +01:00 |
|
Jeroen Rijken
|
e9bcd3f820
|
Small fixes
|
2022-07-18 19:45:04 +01:00 |
|
Jeroen Rijken
|
70aa5fdbb2
|
Small fixes
|
2022-07-18 19:45:04 +01:00 |
|
Jeroen Rijken
|
5a02490082
|
Needed for certain containers like calico
|
2022-07-18 19:45:04 +01:00 |
|
Jeroen Rijken
|
13aee74df9
|
Various containerd fixes
|
2022-07-18 19:45:04 +01:00 |
|
Alexandre Pujol
|
c750cb1b77
|
feat(profiles): general update.
|
2022-07-18 11:36:16 +01:00 |
|
Jeroen
|
081308db2f
|
Add ZFS Event Daemon (#56)
|
2022-07-17 22:04:13 +00:00 |
|
Alexandre Pujol
|
eb6c7548f5
|
feat(profiles): general update.
|
2022-07-15 21:55:59 +01:00 |
|