Commit graph

118 commits

Author SHA1 Message Date
Alexandre Pujol
273485217c
build: add the task to automatically attach disconnected path.
Not yet enabled on build, as the profiles still require some testing.
2024-10-12 20:08:21 +01:00
Alexandre Pujol
e90ccd214c
refractor: move CopyTo
Will be replaced by os.CopyFS with go 1.23
2024-10-12 15:40:17 +01:00
Alexandre Pujol
982c2c66aa
refractor: rename some path util function. 2024-10-12 15:31:24 +01:00
Alexandre Pujol
ebdeef152c
build: root -> share. 2024-10-11 22:31:06 +01:00
Alexandre Pujol
68127c3859
build: allow to run prebuild outside of this project. 2024-10-09 14:03:54 +01:00
Alexandre Pujol
94703681d9
build: build tasks: dev -> hotfix. 2024-10-08 23:44:13 +01:00
Alexandre Pujol
856c425dd5
chore(build): minor cosmetic. 2024-10-06 20:15:13 +01:00
Alexandre Pujol
4b5f7f2b52
chore: document build the enabled task. 2024-10-04 16:14:40 +01:00
Alexandre Pujol
de21ff07a6
build: move upstream overwrite to its own build tasks.
It allow us to controll when we want to do it and either or not it should be enabled.
2024-10-03 11:55:33 +01:00
Alexandre Pujol
c5505dee8b
fix(build): abi 4 to abi 3 conversion. 2024-10-02 19:24:12 +01:00
Alexandre Pujol
344ccf3003
build: set default ABI to abi4. 2024-10-02 16:44:15 +01:00
Alexandre Pujol
59ac54e2fc
build: reorganise build: abi4, fallback, prebuild cli
- ABI4 by default, fallback to abi 3.
- aa-prebuild cli that can be used by other project shipping profiles.
- --file option to cli to only build one dev profile.
- add abi version filter to only & exclude directives.
2024-10-02 16:22:46 +01:00
Alexandre Pujol
fbdf9cea64
build: support directive without argument. 2024-09-26 22:09:49 +01:00
Alexandre Pujol
05a489e021
build: improve internal directive tool. 2024-09-26 22:08:48 +01:00
Alexandre Pujol
6f5604d59d
build: cleanup base build interface. 2024-09-26 22:05:47 +01:00
Alexandre Pujol
f3094cc741
build: add the X option to the stack directive. 2024-09-10 18:13:48 +01:00
Alexandre Pujol
960135e593
test(build): update userspace unit test. 2024-07-15 23:18:04 +01:00
Alexandre Pujol
9b2470462f
build: ensure @{exec_path} is present in profile att. 2024-07-15 23:04:35 +01:00
Alexandre Pujol
cd03640c10
feat(aa): update parse definition to last changes. 2024-06-19 23:24:43 +01:00
Alexandre Pujol
117e63d88f
fix: ensure filter directive get cleaned on build. 2024-06-14 20:50:17 +01:00
Alexandre Pujol
d98621625a
chore: small fixes and cosmetic. 2024-06-04 20:01:05 +01:00
Alexandre Pujol
41c0e57eca
build: better way to handle debian hide file.
only needed as whonix needs special addition.
2024-06-04 19:55:53 +01:00
Alexandre Pujol
34973baaea
build: use the same technique to disable upstream profile on all distribution.
Only enabled on Ubuntu & opensuse
2024-06-04 19:52:06 +01:00
Alexandre Pujol
89abbae6bd
Merge branch 'feat/aa'
Improve go apparmor lib.

* aa: (62 commits)
  feat(aa): handle appending value to defined variables.
  chore(aa): cosmetic.
  fix: userspace prebuild test.
  chore: cleanup unit test.
  feat(aa): improve log conversion.
  feat(aa): move conversion function to its own file & add unit tests.
  fix: go linter issue & not defined variables.
  tests(aa): improve aa unit tests.
  tests(aa): improve rules unit tests.
  feat(aa): ensure the prebuild jobs are working.
  feat(aa): add more unit tests.
  chore(aa): cleanup.
  feat(aa): Move sort, merge and format methods to the rules interface.
  feat(aa): add the hat template.
  feat(aa): add the Kind struct to manage aa rules.
  feat(aa): cleanup rules methods.
  feat(aa): add function to resolve include preamble.
  feat(aa): updaqte mount flags order.
  feat(aa): update default tunable selection.
  feat(aa): parse apparmor preamble files.
  ...
2024-05-30 19:29:34 +01:00
Alexandre Pujol
7f1de3626e
feat(aa): handle appending value to defined variables. 2024-05-30 14:23:56 +01:00
Alexandre Pujol
fd46c0de30
fix: userspace prebuild test. 2024-05-30 14:18:57 +01:00
Alexandre Pujol
bc216176a3
fix: go linter issue & not defined variables. 2024-05-30 12:28:12 +01:00
Alexandre Pujol
23eaa20fb7
feat(aa): ensure the prebuild jobs are working. 2024-05-29 21:12:54 +01:00
Alexandre Pujol
2dd6046697
feat(prebuild): add builder opt to build tasks. 2024-05-25 22:32:10 +01:00
Alexandre Pujol
02e3334949
feat(prebuild): add err reporting to builder & directive tasks. 2024-05-25 22:30:20 +01:00
Alexandre Pujol
1e79d27232
feat(aa): rename identation variables. 2024-05-04 23:54:39 +01:00
Alexandre Pujol
af4ee0df00
fix(ci): build tests. 2024-04-28 17:50:07 +01:00
Alexandre Pujol
aa94ce1740
build: ensure KDE Neon is in the supported dist list.
See #312
2024-04-28 17:17:29 +01:00
Alexandre Pujol
c7fb47e97a
build: remove directive text not applied on build. 2024-04-28 14:22:00 +01:00
Alexandre Pujol
926e146dad
chore: use internal paths lib. 2024-04-28 00:36:16 +01:00
Alexandre Pujol
0cd0262bed
chore: update go mod deps. 2024-04-28 00:04:42 +01:00
Alexandre Pujol
8bb6f07950
feat(prebuilt): update aa usage to the last changes. 2024-04-23 21:43:22 +01:00
Alexandre Pujol
890275fb22
feat(aa): rename the main profile struct. 2024-04-16 21:51:56 +01:00
Alexandre Pujol
4b753210e7
feat(aa): modify the apparmor struct to support multiple profiles and subprofile. 2024-04-15 14:09:04 +01:00
Alexandre Pujol
ab4feda5ba
feat(aa): improve apparmor struct. 2024-04-14 23:58:34 +01:00
Alexandre Pujol
ea1736083a
chore: use slices from standard library. 2024-04-12 20:07:05 +01:00
Alexandre Pujol
129db925ad
build(whonix): handle internal whonix conflict. 2024-04-05 23:44:43 +01:00
Alexandre Pujol
cad0b936e5
build: make debian hide file edditable. 2024-04-03 21:05:24 +01:00
Alexandre Pujol
1915fa5175
feat(build): simplify some internal tooling. 2024-04-02 17:48:03 +01:00
Alexandre Pujol
6dd0c36e9a
feat: prefix variables that refer to a profile 2024-04-02 13:41:08 +01:00
Alexandre Pujol
334c930969
fix(profile): temporary allow environment in profile transition.
Turn out this is the actual source of issues #80 #235:
- Some programs do not start well with scrub the environment
- Not related to dbus (but dbus was affected)
- May concern a lot of profiles

As a temporary solution, we convert all Px in px while we find out a proper solution.
2024-03-30 18:17:55 +00:00
Alexandre Pujol
43ab1d064d
chore: cosmetic. 2024-03-27 21:38:18 +00:00
Alexandre Pujol
b9cfd787c8
fix(ci): minor fixes. 2024-03-27 17:17:15 +00:00
Alexandre Pujol
cf7ce9603e
fix(build): ensure tests work. 2024-03-27 16:26:01 +00:00
Alexandre Pujol
30859c8170
build: add some missing internal tests. 2024-03-26 18:08:20 +00:00