Commit Graph

1256 Commits

Author SHA1 Message Date
nobodysu
2c2f6e5557 rearrangement 2022-08-02 19:31:00 +03:00
nobodysu
af49797425 cleanup 2022-08-02 01:59:54 +03:00
nobodysu
c96b6d8ee7 dbus-gtk 2022-08-02 01:47:47 +03:00
Alexandre Pujol
2878fa6a2e
feat(profiles): general update. 2022-07-29 16:47:09 +01:00
Jeroen Rijken
58cfe9ad37 Small fixes 2022-07-29 16:41:19 +01:00
Jeroen Rijken
616753aea0 Consolidate rules 2022-07-29 16:41:19 +01:00
Jeroen Rijken
fcea04c69b Remove complain flags 2022-07-29 16:41:19 +01:00
Jeroen Rijken
e724d835ed Add ps to ptrace 2022-07-29 16:41:19 +01:00
Jeroen Rijken
e4d118365a Add Kubernetes pause container 2022-07-29 16:41:19 +01:00
Jeroen Rijken
e6525e1f04 Add missing volumes 2022-07-29 16:41:19 +01:00
Jeroen Rijken
07f1db2725 Fix some typo's 2022-07-29 16:41:19 +01:00
Jeroen Rijken
465a31c638 General updates 2022-07-29 16:41:19 +01:00
Jeroen Rijken
33da7af6e8 container updates 2022-07-29 16:41:19 +01:00
Jeroen Rijken
3af11c4d16 ZFS updates 2022-07-29 16:41:19 +01:00
Alexandre Pujol
b55c3f7d06
ci: fix build image name. 2022-07-22 12:09:07 +01:00
Alexandre Pujol
7aca29b244
feat(profiles): initial snap support. 2022-07-21 22:40:06 +01:00
Alexandre Pujol
177d27d94c
feat(profiles): general update. 2022-07-21 22:37:17 +01:00
Alexandre Pujol
58b96a7ba9
feat(profiles): add aptd profile. 2022-07-21 22:31:59 +01:00
Alexandre Pujol
595a27560f
feat(profiles): add mullvad profiles. 2022-07-21 20:17:03 +01:00
Alexandre Pujol
48c023d4bd
feat(profiles): containerd support for docker & cosmetic. 2022-07-21 20:15:02 +01:00
Jeroen Rijken
55bd85796c packagekitd dbus updates 2022-07-21 20:05:56 +01:00
Jeroen Rijken
137433ce6e dbus to NetworkManager 2022-07-21 20:05:56 +01:00
Jeroen Rijken
eb87e035b8 Initial containerd-shim-runc support 2022-07-21 20:05:56 +01:00
Jeroen Rijken
266d5c6dc0 Add IPV6 2022-07-21 19:46:45 +01:00
Jeroen Rijken
b404d7e4c4 Move xtables-nft to separate profile 2022-07-21 19:46:45 +01:00
Jeroen Rijken
130c562488 Allow containerd signal from k3s 2022-07-21 19:46:45 +01:00
Jeroen Rijken
61eab33cd8 Add ptrace subprofile 2022-07-21 19:46:45 +01:00
Jeroen Rijken
d6d9c943ae Add missing permission 2022-07-21 19:46:45 +01:00
Jeroen Rijken
dca33292f7 Update ruleset for clean installation. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
a1f4dbee50 First batch of cleanups based on PR comments. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
c03c624472 Allow signals from containerd to calico 2022-07-21 19:46:45 +01:00
Jeroen Rijken
8f81a39df1 Support read AppArmor profiles 2022-07-21 19:46:45 +01:00
Jeroen Rijken
560250cf5f Fix mode 2022-07-21 19:46:45 +01:00
Jeroen Rijken
2deb2a48a6 Fix name range. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
a3415dc42c Typo and calico proc. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
c84455cca4 Fixes for container network creation. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
3e006e3c76 Fix for calico unable to create network namespace. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
5565217c91 Move xtables profile to child profile of k3s. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
78cfb23bff Apply suggested fixes from PR 2022-07-21 19:46:45 +01:00
Jeroen Rijken
5af6cda328 Allow dbus messages and user database reading. 2022-07-21 19:46:45 +01:00
Jeroen Rijken
28a3584c14 Initial support for xtables-nft-multi 2022-07-21 19:46:45 +01:00
Jeroen Rijken
463da2a8f4 Initial support for k3s 2022-07-21 19:46:45 +01:00
nobodysu
b8445e3b45 dbus style 2022-07-20 00:48:58 +03:00
Alexandre Pujol
8fda216cc2
doc: cosmetic. 2022-07-19 13:56:36 +01:00
Alexandre Pujol
f4dd2745d1
feat(profiles): add software-properties-dbus. 2022-07-19 00:03:01 +01:00
Alexandre Pujol
5b01f7963b
feat(profiles): add file-roller. 2022-07-18 23:58:12 +01:00
Alexandre Pujol
9692926752
feat(profiles): general update. 2022-07-18 23:57:25 +01:00
Jeroen Rijken
2ec802d40d Remove deny root 2022-07-18 19:45:04 +01:00
Jeroen Rijken
e9bcd3f820 Small fixes 2022-07-18 19:45:04 +01:00
Jeroen Rijken
70aa5fdbb2 Small fixes 2022-07-18 19:45:04 +01:00