mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-14 23:43:56 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,917 Commits 7 Branches 0 Tags 14 MiB
6e2d817805
Commit Graph

2917 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Alexandre Pujol
08a6f8fb0b
tests(packer): enable apparmor debug in tests image. 2024-10-01 17:49:43 +01:00
Alexandre Pujol
8730c09b96
feat(profile): general update. 2024-10-01 17:43:54 +01:00
Alexandre Pujol
21e8456383
feat(abs): general improvment. 2024-10-01 17:29:49 +01:00
Alexandre Pujol
63888f07a7
fix(profile): flatpak app range. 
fix #519
 2024-09-27 14:39:01 +01:00
Alexandre Pujol
a8c18f9b94
test(aa-log): update tests to the last changes. 2024-09-27 12:20:48 +01:00
Alexandre Pujol
e1f665aec1
fix(go): updated function name. 2024-09-26 22:53:02 +01:00
Alexandre Pujol
00d6a664eb
feat(aa-log): improve logs cleaning and varible resolution. 2024-09-26 22:25:24 +01:00
Alexandre Pujol
83bc7d3ade
feat(aa-log): minor improvment in rule generation & formatting. 2024-09-26 22:15:46 +01:00
Alexandre Pujol
fbdf9cea64
build: support directive without argument. 2024-09-26 22:09:49 +01:00
Alexandre Pujol
05a489e021
build: improve internal directive tool. 2024-09-26 22:08:48 +01:00
Alexandre Pujol
6f5604d59d
build: cleanup base build interface. 2024-09-26 22:05:47 +01:00
Alexandre Pujol
c6c4920598
feat(profile): newer gnome want to read /. 2024-09-26 20:36:14 +01:00
Alexandre Pujol
549c6ba2f5
feat(profile): ubuntu: improve integration with ubuntu. 2024-09-26 20:34:12 +01:00
Alexandre Pujol
3f13aa77bf
feat(profile): update some dbus rules. 2024-09-26 20:29:33 +01:00
Alexandre Pujol
fbb0d62aee
fix(profile): ensure sandboxed app ca write font cache. 2024-09-26 20:21:48 +01:00
Alexandre Pujol
5d14ff8e5c
ci: set token for git-committers 2024-09-26 20:20:20 +01:00
Roman Beslik
03e974525e Narrowed the temporary file permission 2024-09-26 13:06:26 +00:00
Roman Beslik
e16ade603a Includes have been sorted alphabetically 2024-09-26 13:06:26 +00:00
Roman Beslik
f70e17da33 Changed the profile attachment to the variable 2024-09-26 13:06:26 +00:00
Roman Beslik
779377ce4c Get images from a scanner 2024-09-26 13:06:26 +00:00
Alexandre Pujol
91fc3adb63
docs: update known issues. 2024-09-25 23:19:54 +01:00
Alexandre Pujol
e3a5812bfb
doc: add man page for aa-log. 2024-09-25 23:17:44 +01:00
Alexandre Pujol
bbd06dcabd
doc: add git-committers extension. 2024-09-25 22:33:32 +01:00
Alexandre Pujol
8fb767a5f9
feat(abs): add user-data abstraction. 
Warning: experiemental, only for abi 4+, requires a prompting client.

See: https://discourse.ubuntu.com/t/ubuntu-desktop-s-24-10-dev-cycle-part-5-introducing-permissions-prompting/47963
 2024-09-25 15:14:16 +01:00
Alexandre Pujol
28b32f1ae3
feat(profile): restrict some access to @{PROC}/@{pid}. 2024-09-25 14:00:29 +01:00
Alexandre Pujol
90a8e44d20
feat(tunable): add more system vars. 2024-09-25 13:05:35 +01:00
Alexandre Pujol
156cce5362
feat(profile): restrict dbus in dbus 
even dbus-* profiles do not need access to the full bus.
 2024-09-25 00:48:42 +01:00
Alexandre Pujol
69f9e8464f
feat(profile): update profiles for gnome 47. 2024-09-25 00:14:02 +01:00
Alexandre Pujol
457953876a
feat(profile): improve systemd-dissect 2024-09-24 21:49:56 +01:00
Alexandre Pujol
24e0746efa
fix(profile): libreoffice: support any version of java. 
fix #520
 2024-09-24 21:46:50 +01:00
Alexandre Pujol
6578b55829
fix(profile) Gimp thumbnails log 
fix #522
 2024-09-24 21:44:49 +01:00
Alexandre Pujol
3a34a70181
fix(profile): xfs support in udisksd 
fix #524
 2024-09-24 21:38:51 +01:00
Alexandre Pujol
a0dab01401
feat(profile): update multipath. 
fix #523
 2024-09-24 21:36:49 +01:00
odomingao
67b1c301ed Create vesktop 2024-09-24 10:13:13 +00:00
curiosityseeker
8cc986ab92 Update protonmail 2024-09-24 10:12:52 +00:00
curiosityseeker
9400e5fd00 Update main.flags 2024-09-24 10:12:52 +00:00
curiosityseeker
0bf60c313f New profile: protonmail 2024-09-24 10:12:52 +00:00
curiosityseeker
97676dcf71 Update sudo 
Condensing requests like:

@{sys}/fs/cgroup/{hostcritical,system,unevictable,user}.slice/*.service/cgroup.procs r,
@{sys}/fs/cgroup/system.slice/system-getty.slice/getty@tty3.service/cgroup.procs r,
@{sys}/fs/cgroup/user.slice/user-1000.slice/user@1000.service/cgroup.procs r,
@{sys}/fs/cgroup/system.slice/system-getty.slice/getty@tty3.service/cgroup.procs r,
@{sys}/fs/cgroup/user.slice/user-1000.slice/user@1000.service/cgroup.procs r,
@{sys}/fs/cgroup/user.slice/user-968.slice/user@968.service/cgroup.procs r,
 2024-09-23 15:00:22 +00:00
valoq
69cc1031ad clean ssh sk helper 2024-09-23 14:46:05 +00:00
valoq
a854b63162 fix profiles 2024-09-23 14:46:05 +00:00
valoq
4660b7d49c add ssh-sk-helper 2024-09-23 14:46:05 +00:00
curiosityseeker
0d5a3405d8 Update protonmail-bridge-core 
because of the following request:

```
/etc/ca-certificates/extracted/*.pem r,
/etc/ssl/certs/{,**} r,
```
 2024-09-23 14:44:58 +00:00
curiosityseeker
c28d05f15f Update protonmail-bridge 
Because of the following requests:

```
owner "@{user_cache_dirs}/Proton AG/" w,
owner @{user_cache_dirs}/protonmail/ w,

owner @{user_config_dirs}/protonmail/ w,

owner @{user_share_dirs}/protonmail/ w,
```
possibly during setup.
 2024-09-23 14:44:58 +00:00
EricLin0509
3a7e4c6705 A Fix for xdg-permission-store 2024-09-23 14:43:56 +00:00
odomingao
8fa2058c55 Small improvement to audio-client 2024-09-23 14:43:28 +00:00
odomingao
18c2f3e8d7 Update gamemoded 2024-09-23 14:43:04 +00:00
odomingao
117b54d16c Create gamemoded 2024-09-23 14:43:04 +00:00
Alexandre Pujol
6723b43559
feat(profile): improve systemsettings. 2024-09-23 15:12:24 +01:00
Alexandre Pujol
31cadd634f
feat(abs): improve some gnome profiles. 2024-09-23 15:11:50 +01:00
Alexandre Pujol
62cb546afa
feat(fps): improve systemd profiles. 2024-09-23 14:59:44 +01:00