Commit Graph

143 Commits

Author SHA1 Message Date
Alexandre Pujol
88fcdd8c8e
build(directive): support both liust & map. 2024-03-23 17:41:10 +00:00
Alexandre Pujol
f81ceb9185
feat(aa-log): speed up log generation. 2024-03-23 13:41:19 +00:00
Alexandre Pujol
d5470b8404
build: exex directive: sort & cleanup generated rules. 2024-03-22 20:56:04 +00:00
Alexandre Pujol
73fe7a7475
build: exex directive: add support for transition. 2024-03-22 19:47:45 +00:00
Alexandre Pujol
492c5a37dd
refractor: move integration code to the test directory. 2024-03-22 14:08:44 +00:00
Alexandre Pujol
0d16d4fdab
build: remove old directive code. 2024-03-21 23:23:44 +00:00
Alexandre Pujol
79a3bb1ea8
fix(build): for compatibility, use slices from exp. 2024-03-21 23:19:33 +00:00
Alexandre Pujol
22fb2298d5
fix(build): for compatibility, use slices from exp. 2024-03-21 22:20:19 +00:00
Alexandre Pujol
e2ac675165
fix(build): ensure directive can be loaded. 2024-03-21 22:13:00 +00:00
Alexandre Pujol
99e386705f
feat(build): rewrite the dbus directive fot the new format. 2024-03-21 22:09:16 +00:00
Alexandre Pujol
b32ee4a5a9
feat(build): add the exec directive. 2024-03-21 22:07:41 +00:00
Alexandre Pujol
8e5f83df34
feat(build): rewrite the stack directive witht the new structure. 2024-03-21 21:09:46 +00:00
Alexandre Pujol
83691bbb1f
feat(build): add new filter directives. 2024-03-21 20:51:42 +00:00
Alexandre Pujol
2ca62215bc
build: prepare new structure for directives. 2024-03-21 20:36:41 +00:00
Alexandre Pujol
e1d1d0be3d
refractor(build): move os logic to its own module. 2024-03-21 18:58:32 +00:00
Alexandre Pujol
662dd1c6dc
chore: move internal util function. 2024-03-21 18:54:52 +00:00
Alexandre Pujol
bf613f59a5
feat(profile): replace @{md5} by @{hex32}. 2024-03-19 21:26:12 +00:00
Alexandre Pujol
c9b87efebe
chore: cosmetic. 2024-03-16 19:27:45 +00:00
Alexandre Pujol
a66ff700a2
build: split systemd drop file in function of their purpose.
default: ensure a service use a given profile
early: ensure a service start after apparmor.
2024-03-15 16:17:19 +00:00
Alexandre Pujol
b0d52d68f4
build: refractor internal tools. 2024-03-10 19:07:55 +00:00
Alexandre Pujol
df21886965
fix(fsp): fix conflicting x modifiers in abstractions 2024-03-10 18:57:05 +00:00
Alexandre Pujol
e3545cc3bb
feat(aa-log): improve the regex helper type. 2024-03-10 15:53:25 +00:00
Alexandre Pujol
70b043cdae
build: improve build tests 2024-03-10 14:48:05 +00:00
Alexandre Pujol
be373dfb80
fix(build): rename boolean. 2024-03-10 14:47:13 +00:00
Alexandre Pujol
78a96eecd2
build: add a new "stack" directive. 2024-03-10 14:46:34 +00:00
Alexandre Pujol
f5aacbd029
build(debian): use hide instead of displace to overwrite upstream profiles. 2024-03-10 14:43:43 +00:00
Alexandre Pujol
b342df689a
build: improve error handling. 2024-03-10 14:24:59 +00:00
Alexandre Pujol
d40985099c
refractor: remove dependency on pkg/errors. 2024-03-07 17:25:13 +00:00
Alexandre Pujol
86898ec673
feat(aa-log): update order of impression. 2024-02-29 23:37:50 +00:00
Alexandre Pujol
65386321c2
feat(aa-log): update shell paths. 2024-02-29 23:14:01 +00:00
Alexandre Pujol
19b27a26c0
feat(aa-log): do not filter out addresses from the log. 2024-02-29 23:13:15 +00:00
Alexandre Pujol
3d4dd5c91a
feat(aa-log): correctly handle remount rule from mount log. 2024-02-29 23:12:19 +00:00
Alexandre Pujol
717496e7df
fix: cleanup go code. 2024-02-29 00:38:29 +00:00
Alexandre Pujol
e616b9b3fc
feat(aa-log): ensure unix rule are not confused with network unix rule.
Both are technically the same, we simply prioritize `unix` to `network unix`.
2024-02-29 00:20:37 +00:00
Alexandre Pujol
e3daaf3d4c
feat(aa-log): ensure rule access is always present. 2024-02-29 00:19:26 +00:00
Alexandre Pujol
45a6e0bf21
fix(build): ensure the displace file get cleaned when not needed. 2024-02-29 00:03:39 +00:00
Alexandre Pujol
58f130fbb2
tests(aa-log): add missing tests for osrelease. 2024-02-28 23:27:57 +00:00
Alexandre Pujol
ae9f7e7442
build: add initial build support for ubuntu 24.04 2024-02-28 17:35:14 +00:00
Alexandre Pujol
fbf154b860
fix(build): ensure the build system has support for empty profile. 2024-02-24 17:02:43 +00:00
Alexandre Pujol
1bc63becaf
feat(aa-log): an empty profile now return empty string. 2024-02-24 17:01:03 +00:00
Alexandre Pujol
48b39fa816
test(aa-log): add more tests about the mount rules. 2024-02-24 17:00:07 +00:00
Alexandre Pujol
d6dc89b4f3
feat(aa-log): parse mount conditions from logs. 2024-02-24 16:58:38 +00:00
Alexandre Pujol
e02bf03cca
feat(tunable): add new system_user variable. 2024-02-14 23:58:18 +00:00
Alexandre Pujol
e28e452ba4
build(dbus): improve generated dbus rules. 2024-02-14 23:22:01 +00:00
Alexandre Pujol
2cd14aa6bb
chore: add missing and update copyright year. 2024-02-07 00:16:21 +01:00
Alexandre Pujol
46641e6cc6
chore: update links to the documentation website. 2024-01-30 15:45:03 +00:00
Alexandre Pujol
c8f37afe9a
feat(aa-log): improve profile rendering. 2024-01-21 11:58:44 +00:00
Alexandre Pujol
7cf7adc197
fix(aa-log): ensure aa-log -s return valid result.
Fix #268
2023-12-29 18:28:14 +01:00
Alexandre Pujol
4091fca3f0
fix(build): cleanup go import. 2023-12-15 22:37:37 +00:00
Alexandre Pujol
66a4a17924
build: add inital support for dbus directive. 2023-12-15 22:11:25 +00:00