mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2024-11-15 16:03:51 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
2,604 Commits 7 Branches 0 Tags 14 MiB
8ef9a18242
Commit Graph

283 Commits

Author SHA1 Message Date
Alexandre Pujol
23eaa20fb7
feat(aa): ensure the prebuild jobs are working. 2024-05-29 21:12:54 +01:00
Alexandre Pujol
fe4c86a245
feat(aa): add more unit tests. 2024-05-28 18:23:37 +01:00
Alexandre Pujol
e33c1243cc
chore(aa): cleanup. 2024-05-28 18:22:14 +01:00
Alexandre Pujol
90087be509
feat(aa): Move sort, merge and format methods to the rules interface. 
- Use the new Kind struct in favor of reflect
- Update sort function to slices.SortFunc
 2024-05-28 18:20:52 +01:00
Alexandre Pujol
0761a6c466
feat(aa): add the hat template. 2024-05-28 18:16:21 +01:00
Alexandre Pujol
3b0944c615
feat(aa): add the Kind struct to manage aa rules. 2024-05-28 18:15:22 +01:00
Alexandre Pujol
1333ec2025
feat(aa): cleanup rules methods. 2024-05-28 18:07:32 +01:00
Alexandre Pujol
dc0e0084a0
feat(aa): add function to resolve include preamble. 2024-05-28 11:53:32 +01:00
Alexandre Pujol
04a91bbd9b
feat(aa): updaqte mount flags order. 2024-05-27 23:44:23 +01:00
Alexandre Pujol
0aa317d8e4
feat(aa): update default tunable selection. 2024-05-27 23:44:03 +01:00
Alexandre Pujol
a99387c323
feat(aa): parse apparmor preamble files. 2024-05-27 18:55:21 +01:00
Alexandre Pujol
2e043d4ec8
feat(aa): add some rules methods. 2024-05-26 18:05:15 +01:00
Alexandre Pujol
92641e7e28
feat(aa): add initial profile validation structure. 2024-05-25 22:36:39 +01:00
Alexandre Pujol
2dd6046697
feat(prebuild): add builder opt to build tasks. 2024-05-25 22:32:10 +01:00
Alexandre Pujol
02e3334949
feat(prebuild): add err reporting to builder & directive tasks. 2024-05-25 22:30:20 +01:00
Alexandre Pujol
865ce4c66b
chore: cosmetic 2024-05-25 22:26:51 +01:00
Alexandre Pujol
9812c38b83
test(aa): add unit tests for the link rule. 2024-05-25 22:22:57 +01:00
Alexandre Pujol
019b6f8197
feat(aa): format now merge access list. 2024-05-25 22:22:32 +01:00
Alexandre Pujol
54fdf38861
chore: cosmetic & fix. 2024-05-25 22:21:59 +01:00
Alexandre Pujol
72107dcfff
feat(aa): add the hat struct. 2024-05-25 22:17:32 +01:00
Alexandre Pujol
474481f1d3
test(aa): update unit tests. 2024-05-25 22:16:31 +01:00
Alexandre Pujol
656aa15836
feat(aa): rewrite the toAccess function to parse, convert and verify the access values. 2024-05-25 22:14:43 +01:00
Alexandre Pujol
05de39d92a
feat(aa): improve comment generation from log map. 2024-05-25 22:03:16 +01:00
Alexandre Pujol
744c745394
feat(aa): add requirements map. 2024-05-25 22:01:29 +01:00
Alexandre Pujol
e38f5b4637
feat(aa): add the link rule. 2024-05-25 21:56:28 +01:00
Alexandre Pujol
aa0386253c
test: remove useless unit test. 2024-05-11 13:25:24 +01:00
Alexandre Pujol
14cac43c6c
build: add @{int2} to the list of default variable. 2024-05-11 12:13:57 +01:00
Alexandre Pujol
81f0163086
feat(aa): cleanup, fix import and add some unit tests. 2024-05-05 14:19:25 +01:00
Alexandre Pujol
3ad55927bf
feat(aa): add basic rules getter 2024-05-05 14:11:00 +01:00
Alexandre Pujol
ad81c39e31
feat(aa): remove now unsused rule.Sort method. 2024-05-05 14:10:14 +01:00
Alexandre Pujol
305d06dbe0
feat(aa): rewrite variable handling. 2024-05-05 14:09:00 +01:00
Alexandre Pujol
28f4294774
feat(aa): move the all rule to its own file. 2024-05-05 13:57:15 +01:00
Alexandre Pujol
1e79d27232
feat(aa): rename identation variables. 2024-05-04 23:54:39 +01:00
Alexandre Pujol
5943e9a24d
test(aa): cleanup unit tests. 2024-05-04 23:45:36 +01:00
Alexandre Pujol
f763d31a07
feat(aa): a Constraint and Kind method to the Rule interface. 2024-05-04 23:41:47 +01:00
Alexandre Pujol
a5c4eab0cf
feat(aa): make preamble rule classic aa rules. 2024-05-04 23:25:55 +01:00
Alexandre Pujol
b636b4b3e9
feat(aa-log): improve the journalctl filter. 2024-05-03 13:01:10 +01:00
Alexandre Pujol
9c0f4dd6a7
fix(aa-log): grep journal logs over apparmor instead of AVC for wider compatibility. 2024-05-03 12:34:08 +01:00
Alexandre Pujol
511ba6c6a9
feat(aa-log): filter journactl log 2024-05-01 18:25:11 +01:00
Alexandre Pujol
af4ee0df00
fix(ci): build tests. 2024-04-28 17:50:07 +01:00
Alexandre Pujol
aa94ce1740
build: ensure KDE Neon is in the supported dist list. 
See #312
 2024-04-28 17:17:29 +01:00
Alexandre Pujol
c7fb47e97a
build: remove directive text not applied on build. 2024-04-28 14:22:00 +01:00
Alexandre Pujol
d1fb9574cb
feat(aa-log): speed up log generation. 2024-04-28 12:06:40 +01:00
Alexandre Pujol
926e146dad
chore: use internal paths lib. 2024-04-28 00:36:16 +01:00
Alexandre Pujol
f66789d381
chore: include build dep go-paths-helper. 
See #305
 2024-04-28 00:30:59 +01:00
Alexandre Pujol
0cd0262bed
chore: update go mod deps. 2024-04-28 00:04:42 +01:00
Alexandre Pujol
068373405f
feat(aa): add some missing rule template. 2024-04-25 14:01:04 +01:00
Alexandre Pujol
8a8808194b
refractor(aa): move base rule & qualifier to their own file. 2024-04-24 13:31:22 +01:00
Alexandre Pujol
8bb6f07950
feat(prebuilt): update aa usage to the last changes. 2024-04-23 21:43:22 +01:00
Alexandre Pujol
de73c9b706
test(aa): improve some internal unit test. 
Thanks to the last changes...
 2024-04-23 21:38:52 +01:00
Alexandre Pujol
a0b5362589
refractor(aa): update test structure. 2024-04-23 21:35:23 +01:00
Alexandre Pujol
2923df2a73
refractor(aa): move profile specific method to the profile struct. 2024-04-23 21:32:58 +01:00
Alexandre Pujol
120db93396
feat(aa): refractor apparmor templates to the last changes. 2024-04-23 21:27:35 +01:00
Alexandre Pujol
5483668574
feat(aa): add a string method to all rule struct. 2024-04-23 21:26:09 +01:00
Alexandre Pujol
e9fa0660f8
feat(aa): add define parameter for variables. 2024-04-23 21:18:44 +01:00
Alexandre Pujol
c719a0a109
feat(aa): ensure accesses are slice of string. 2024-04-23 21:17:25 +01:00
Alexandre Pujol
a2910122d2
fix: do not use the wrong profile. 2024-04-23 19:18:42 +01:00
Alexandre Pujol
c97886d960
feat(aa): continue refractoring the aa structure. 2024-04-19 22:43:02 +01:00
Alexandre Pujol
8ef858ad35
feat(aa): refractor template to allow multiple templates. 2024-04-17 18:02:41 +01:00
Alexandre Pujol
890275fb22
feat(aa): rename the main profile struct. 2024-04-16 21:51:56 +01:00
Alexandre Pujol
4b753210e7
feat(aa): modify the apparmor struct to support multiple profiles and subprofile. 2024-04-15 14:09:04 +01:00
Alexandre Pujol
507002c660
feat(aa): rename the main file template. 2024-04-15 13:32:20 +01:00
Alexandre Pujol
ab4feda5ba
feat(aa): improve apparmor struct. 2024-04-14 23:58:34 +01:00
Alexandre Pujol
ea1736083a
chore: use slices from standard library. 2024-04-12 20:07:05 +01:00
Alexandre Pujol
8b68132f0e
fix(build): add a simple check to ensure all resolved variables are defined. 2024-04-11 00:15:08 +01:00
Alexandre Pujol
129db925ad
build(whonix): handle internal whonix conflict. 2024-04-05 23:44:43 +01:00
Alexandre Pujol
2b26dac3b9
fix(build): add local variable definition. 
Note: will be really fixed later.
 2024-04-05 23:34:44 +01:00
Alexandre Pujol
6810fe679e
chore: minor cosmetic. 2024-04-03 21:06:28 +01:00
Alexandre Pujol
cad0b936e5
build: make debian hide file edditable. 2024-04-03 21:05:24 +01:00
Alexandre Pujol
4490db45c9
feat(aa-log): improve log cleaning. 2024-04-02 17:50:33 +01:00
Alexandre Pujol
1915fa5175
feat(build): simplify some internal tooling. 2024-04-02 17:48:03 +01:00
Alexandre Pujol
6dd0c36e9a
feat: prefix variables that refer to a profile 2024-04-02 13:41:08 +01:00
Alexandre Pujol
334c930969
fix(profile): temporary allow environment in profile transition. 
Turn out this is the actual source of issues #80 #235:
- Some programs do not start well with scrub the environment
- Not related to dbus (but dbus was affected)
- May concern a lot of profiles

As a temporary solution, we convert all Px in px while we find out a proper solution.
 2024-03-30 18:17:55 +00:00
Alexandre Pujol
43ab1d064d
chore: cosmetic. 2024-03-27 21:38:18 +00:00
Alexandre Pujol
b9cfd787c8
fix(ci): minor fixes. 2024-03-27 17:17:15 +00:00
Alexandre Pujol
cf7ce9603e
fix(build): ensure tests work. 2024-03-27 16:26:01 +00:00
Alexandre Pujol
30859c8170
build: add some missing internal tests. 2024-03-26 18:08:20 +00:00
Alexandre Pujol
0f1f9ce49b
build: use new internal structure. 2024-03-26 18:07:48 +00:00
Alexandre Pujol
c8512bc2c6
test(build): better variable naming scheme. 2024-03-26 18:06:47 +00:00
Alexandre Pujol
f8d970faf0
build: new structure for internal config files. 2024-03-26 18:05:55 +00:00
Alexandre Pujol
e67a66ff94
refractor(build): remove old builder/prepare. 2024-03-25 23:38:07 +00:00
Alexandre Pujol
69f2f46c46
refractor(build): update prebuild logic to the new interface structure. 2024-03-25 23:37:13 +00:00
Alexandre Pujol
2dea78a59c
refractor(build): move prepare tasks to the prepare sub package. 2024-03-25 23:34:14 +00:00
Alexandre Pujol
16f00ebfc7
refractor(build): move builder tasks to the builder sub package. Add tests. 2024-03-25 23:16:00 +00:00
Alexandre Pujol
08d4110c2a
build: update directives with the new interface. 2024-03-25 22:40:25 +00:00
Alexandre Pujol
38e9e5f08e
build: define new build directories. 2024-03-25 22:38:01 +00:00
Alexandre Pujol
62099d325d
build: define new unified build interfaces. 2024-03-25 22:37:30 +00:00
Alexandre Pujol
b6aed5cd8d
refractor(build): move os check as an internal build pkg. 2024-03-25 22:36:31 +00:00
Alexandre Pujol
ac935ce81c
refractor: move internal build function to util. 2024-03-25 21:45:18 +00:00
Alexandre Pujol
5d40cc1166
fix(aa-log): handle owner rule even if thhe log is not complete. 2024-03-25 20:32:13 +00:00
Alexandre Pujol
88fcdd8c8e
build(directive): support both liust & map. 2024-03-23 17:41:10 +00:00
Alexandre Pujol
f81ceb9185
feat(aa-log): speed up log generation. 2024-03-23 13:41:19 +00:00
Alexandre Pujol
d5470b8404
build: exex directive: sort & cleanup generated rules. 2024-03-22 20:56:04 +00:00
Alexandre Pujol
73fe7a7475
build: exex directive: add support for transition. 2024-03-22 19:47:45 +00:00
Alexandre Pujol
492c5a37dd
refractor: move integration code to the test directory. 2024-03-22 14:08:44 +00:00
Alexandre Pujol
0d16d4fdab
build: remove old directive code. 2024-03-21 23:23:44 +00:00
Alexandre Pujol
79a3bb1ea8
fix(build): for compatibility, use slices from exp. 2024-03-21 23:19:33 +00:00
Alexandre Pujol
22fb2298d5
fix(build): for compatibility, use slices from exp. 2024-03-21 22:20:19 +00:00
Alexandre Pujol
e2ac675165
fix(build): ensure directive can be loaded. 2024-03-21 22:13:00 +00:00
Alexandre Pujol
99e386705f
feat(build): rewrite the dbus directive fot the new format. 2024-03-21 22:09:16 +00:00