Commit graph

2226 commits

Author SHA1 Message Date
Alexandre Pujol
65386321c2
feat(aa-log): update shell paths. 2024-02-29 23:14:01 +00:00
Alexandre Pujol
19b27a26c0
feat(aa-log): do not filter out addresses from the log. 2024-02-29 23:13:15 +00:00
Alexandre Pujol
3d4dd5c91a
feat(aa-log): correctly handle remount rule from mount log. 2024-02-29 23:12:19 +00:00
Alexandre Pujol
06abeac2ee
feat(profile): general update. 2024-02-29 21:45:42 +00:00
Alexandre Pujol
cd09dc7688
feat(abs): update dbus absractions. 2024-02-29 21:38:49 +00:00
Alexandre Pujol
f76051f114
feat(profile): add some unix rules with local address. 2024-02-29 21:15:59 +00:00
Alexandre Pujol
956c282794
feat(abs): add apps to the launcher-user abs. 2024-02-29 21:06:32 +00:00
Alexandre Pujol
717496e7df
fix: cleanup go code. 2024-02-29 00:38:29 +00:00
Alexandre Pujol
ffb189ef65
feat(profile): general update. 2024-02-29 00:32:40 +00:00
Alexandre Pujol
e616b9b3fc
feat(aa-log): ensure unix rule are not confused with network unix rule.
Both are technically the same, we simply prioritize `unix` to `network unix`.
2024-02-29 00:20:37 +00:00
Alexandre Pujol
e3daaf3d4c
feat(aa-log): ensure rule access is always present. 2024-02-29 00:19:26 +00:00
Alexandre Pujol
45a6e0bf21
fix(build): ensure the displace file get cleaned when not needed. 2024-02-29 00:03:39 +00:00
Alexandre Pujol
1f3b812cfb
feat(profile): add the loupe profile. 2024-02-28 23:52:57 +00:00
Alexandre Pujol
cda8f30c29
feat(profile): start using the new bwrap abs. 2024-02-28 23:52:15 +00:00
Alexandre Pujol
cbbb2b4a3e
fix(profile): better libdir for snap based profiles. 2024-02-28 23:47:47 +00:00
Alexandre Pujol
741980f8ab
feat(abs): use @{pci} in pci path. 2024-02-28 23:32:34 +00:00
Alexandre Pujol
58f130fbb2
tests(aa-log): add missing tests for osrelease. 2024-02-28 23:27:57 +00:00
Alexandre Pujol
ae9f7e7442
build: add initial build support for ubuntu 24.04 2024-02-28 17:35:14 +00:00
Alexandre Pujol
431e93c9df
feat(abs): update bwrap minimal requirments. 2024-02-28 17:17:51 +00:00
Alexandre Pujol
555b5e3c3f
feat(profile): general update. 2024-02-28 17:17:20 +00:00
Alexandre Pujol
1c999ca921
build(debian): add debian displace file. 2024-02-28 16:31:25 +00:00
Alexandre Pujol
c900bd873b
build: update & cleanup flags files. 2024-02-28 15:41:29 +00:00
Alexandre Pujol
d187514fd3
feat(profile): add new userns rule. 2024-02-28 15:39:18 +00:00
Alexandre Pujol
175d243c54
refractor: rename element -> element-desktop. 2024-02-28 15:37:52 +00:00
Alexandre Pujol
225f0a0bcf
ci(github): update github actions. 2024-02-27 20:44:07 +00:00
Alexandre Pujol
00051bd2f0
feat(profiles): continue replacing [0-9]* by @{int}. 2024-02-26 21:10:53 +00:00
Alexandre Pujol
99e4c4622d
feat(abs): add initial version of the bwrap abs.
- To be used by profile that runs bwrap directly.
- Needs more rule when used alongside flatpak
2024-02-24 18:41:36 +00:00
Alexandre Pujol
975bbabf9c
fix(ci): kindly ask shellcheck to not be a pain. 2024-02-24 17:13:21 +00:00
Alexandre Pujol
fbf154b860
fix(build): ensure the build system has support for empty profile. 2024-02-24 17:02:43 +00:00
Alexandre Pujol
1bc63becaf
feat(aa-log): an empty profile now return empty string. 2024-02-24 17:01:03 +00:00
Alexandre Pujol
48b39fa816
test(aa-log): add more tests about the mount rules. 2024-02-24 17:00:07 +00:00
Alexandre Pujol
d6dc89b4f3
feat(aa-log): parse mount conditions from logs. 2024-02-24 16:58:38 +00:00
Alexandre Pujol
511bca60fb
build(debian): only reload apparmor, if it is active. 2024-02-24 14:14:00 +00:00
Alexandre Pujol
cefd372099
tests: support default value in vagrant boxes. 2024-02-24 14:11:59 +00:00
Alexandre Pujol
a1ce144e1c
tests: cleanup image cleanup script. 2024-02-24 14:10:30 +00:00
Alexandre Pujol
7bd500b979
Merge branch 'main' of github.com:roddhjav/apparmor.d
* 'main' of github.com:roddhjav/apparmor.d:
  Add Profiles for imv and zathura (#291)
2024-02-23 22:50:34 +00:00
Alexandre Pujol
9bd21e9361
fix(profile): add bluetooth network to dbus-broker. 2024-02-23 22:35:10 +00:00
valoq
df455f93eb
Add Profiles for imv and zathura (#291)
* add profiles

* fix minor issues

* fix read permissions

* remove leftover line
2024-02-23 20:48:24 +00:00
Alexandre Pujol
2ea53a9dc3
feat(profile): general update. 2024-02-23 20:21:22 +00:00
Alexandre Pujol
f5084ca150
doc: minor update. 2024-02-23 20:14:21 +00:00
Alexandre Pujol
4b23bccb47
fix: ensure fsck.ext4 is has only one profile.
fsck.ext4 was in the profile attachment for both fsck-ext4 and e2fsck, breaking transition to the profile.

Also reorganise some entrypoint to avoid this kind of confusion.
2024-02-23 20:12:32 +00:00
Alexandre Pujol
a9e767462d
fix: remove useless rule.
Rule already present in the base abs.
2024-02-23 19:54:54 +00:00
Alexandre Pujol
d2ab121d08
feat(profile): stack colord-sane on colord.
Both profile could be merged to avoid nnp issue.
2024-02-23 19:53:18 +00:00
doublez13
b2af7a631a whatis: initial profile
AppArmor profile for whatis
2024-02-21 14:10:51 +00:00
Jeroen Rijken
434fc6e954 Update after review
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00
Jeroen Rijken
f60234d74a Restore libexec
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00
Jeroen Rijken
0fb3706bbd Fixes after review
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00
Jeroen Rijken
c8856f6383 Fix konsole links
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00
Jeroen Rijken
640cf9e1d3 Dolphin updates
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00
Jeroen Rijken
7fa4113131 Dolphin copy and delete from trash
Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>
2024-02-21 13:56:40 +00:00