apparmor.d

mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-15 16:03:51 +01:00

Author	SHA1	Message	Date
Alexandre Pujol	2ca62215bc	build: prepare new structure for directives.	2024-03-21 20:36:41 +00:00
Alexandre Pujol	e1d1d0be3d	refractor(build): move os logic to its own module.	2024-03-21 18:58:32 +00:00
Alexandre Pujol	662dd1c6dc	chore: move internal util function.	2024-03-21 18:54:52 +00:00
Alexandre Pujol	dbb0d76e52	feat(abs): add the bash-strict.	2024-03-20 16:14:29 +00:00
Alexandre Pujol	5039dae148	feat(profile): improve kde support on debian.	2024-03-20 16:13:20 +00:00
Alexandre Pujol	74b10ec4d3	build: ensure pkgdest directory exist.	2024-03-20 00:05:30 +00:00
Alexandre Pujol	7b880a5142	feat(profile): general update.	2024-03-20 00:04:39 +00:00
Alexandre Pujol	c074c09e3b	build(opensuse): treat config file as normal files. apparmor.d profile files are not expected to be edited by system admin. They have local directory for this.	2024-03-19 22:14:54 +00:00
Alexandre Pujol	cbd0b61491	feat(profile): improve sudo abstraction.	2024-03-19 22:00:05 +00:00
Alexandre Pujol	7ae05eb397	feat(abs): add download directory to user-read.	2024-03-19 21:55:32 +00:00
Alexandre Pujol	bf613f59a5	feat(profile): replace @{md5} by @{hex32}.	2024-03-19 21:26:12 +00:00
Alexandre Pujol	ceb78d971e	feat(tunables): improve hex variables.	2024-03-19 21:15:50 +00:00
Alexandre Pujol	9007daf842	feat(tunable): opensuse has a special multiarch.	2024-03-19 14:49:17 +00:00
Alexandre Pujol	928f27dbf5	feat(profile): bwrap always need userns.	2024-03-19 14:48:32 +00:00
Alexandre Pujol	dee02b8698	fix: rule compilation.	2024-03-19 11:33:30 +00:00
Alexandre Pujol	091a93194d	feat(fsp): stack more profile on systemd.	2024-03-19 11:30:45 +00:00
Alexandre Pujol	dc46569199	chore: ensure local files are ignored.	2024-03-19 11:28:42 +00:00
Alexandre Pujol	3787eb1745	feat(profile): enable desktop user variable everywhere. Also restrict access to these files.	2024-03-19 11:26:57 +00:00
Alexandre Pujol	a370281e9b	feat(profile): use desktop user variable in gnome. Also restrict access to these files.	2024-03-18 15:31:55 +00:00
Alexandre Pujol	04b9e60072	feat(profile): replace some path with the new desktop variables.	2024-03-18 14:42:02 +00:00
Alexandre Pujol	77945674a5	feat(profile): general update.	2024-03-18 14:31:01 +00:00
Alexandre Pujol	437bef18ca	feat(abs): redeine the DE users paths.	2024-03-18 01:03:44 +00:00
Alexandre Pujol	25c2dc3399	feat(profile): improve gnome startup process.	2024-03-18 00:50:59 +00:00
Alexandre Pujol	1f3da81d5a	tests: fix pkg outpout directory.	2024-03-17 23:20:05 +00:00
Alexandre Pujol	8290c74e66	feat(profile): add some kde related profiles.	2024-03-17 22:49:19 +00:00
Alexandre Pujol	bf22e0770f	feat(profile): improve integration with opensuse.	2024-03-17 22:47:36 +00:00
Alexandre Pujol	eb66feef62	feat(abs): extend the bash abs with some common values.	2024-03-17 22:43:43 +00:00
Alexandre Pujol	158c6006b1	build(opensuse): improve opensuse build process.	2024-03-17 21:34:06 +00:00
Alexandre Pujol	233b1f2f0e	feat(profile): improve gnome profiles.	2024-03-17 21:29:49 +00:00
Alexandre Pujol	fb064431be	feat(profile): add gnome-session-migration.	2024-03-16 22:20:12 +00:00
Alexandre Pujol	1c1855cf6e	build(opensuse): add new systemd drop-in files in the spec file.	2024-03-16 22:01:22 +00:00
Alexandre Pujol	d41f289e2a	feat: ensure the dbus services start with the good profile. As the entrypoin is the same for system & session bus, it is required to use systemd to select the profile.	2024-03-16 21:52:38 +00:00
Alexandre Pujol	6a41184a0e	feat(profile): kglobalaccel5 -> kglobalacceld	2024-03-16 21:49:49 +00:00
Alexandre Pujol	14680e736d	feat(profile): mirnor cleanup on the new dbus profiles.	2024-03-16 21:46:02 +00:00
Alexandre Pujol	0c5e71f971	feat(profile): cleanup some rules already included in abs.	2024-03-16 21:40:35 +00:00
Alexandre Pujol	b15aaae553	feat(profile): add support for new dbus-session in systemd-user.	2024-03-16 21:33:36 +00:00
Alexandre Pujol	30d8e16ffc	feat(profile): ensure plasma support new dbus stack.	2024-03-16 21:28:54 +00:00
Alexandre Pujol	9be9b442a9	feat(profile): rewrite the gnome startup process. The changes in the dbus stack required to rewrite how gnome startup is handled by our various profiles.	2024-03-16 20:52:02 +00:00
Alexandre Pujol	af5171e39d	feat(tunable): add variables for some system-users.	2024-03-16 19:43:22 +00:00
Alexandre Pujol	1148b8faad	feat(tunable): improve our variables definition.	2024-03-16 19:42:25 +00:00
Alexandre Pujol	be3d625b7f	feat(profile): general update.	2024-03-16 19:41:27 +00:00
Alexandre Pujol	c9b87efebe	chore: cosmetic.	2024-03-16 19:27:45 +00:00
Alexandre Pujol	c6717d2bab	feat(profile): use new dbus profile in dbus label.	2024-03-16 13:10:25 +00:00
Alexandre Pujol	61e2cb55ac	feat(profile): rewrite the dbus profiles. Replace the old dbus-broker/dbus-daemon profiles stack by a new unified set of profiles that does not depend-on the dbus implementation used. Ensure that a given bus is fully managed by one unified profile: - We need to allow far fewer rules than before (especially by splitting dbus-system and dbus-session). - It has the side effect to fix some long-running issues regarding dbus start (see: #74, #80 & #235) while keeping all dbus server in the same place.	2024-03-16 13:03:32 +00:00
Alexandre Pujol	4819022202	feat(abs): add unix_chkpwd to the authentication abs as upstream.	2024-03-16 12:27:23 +00:00
Alexandre Pujol	e658d1c4d3	feat(profile): restrict access to /var/lib/gdm in gnome-shell.	2024-03-16 00:22:30 +00:00
Alexandre Pujol	66aa230b90	feat(profile): some dbus rule improvment.	2024-03-15 23:56:23 +00:00
Alexandre Pujol	1b8b52962b	feat(fsp): update mounting rules.	2024-03-15 23:45:18 +00:00
Alexandre Pujol	e3f9013c3a	feat(profile): add some new profiles.	2024-03-15 16:21:17 +00:00
Alexandre Pujol	dd1b3b16e2	feat(profile): move gcr tools.	2024-03-15 16:18:44 +00:00

... 2 3 4 5 6 ...

2217 Commits