Alexandre Pujol
|
a30d3dd415
|
feat(profiles): add element-desktop.
|
2023-08-27 15:42:30 +01:00 |
|
Alexandre Pujol
|
28af1fd642
|
chore: cleanup flags file.
|
2023-08-27 15:35:01 +01:00 |
|
Alexandre Pujol
|
22e57b3620
|
feat(profiles): apply guideline on some profile. Update flags list.
|
2023-08-27 15:30:18 +01:00 |
|
Alexandre Pujol
|
7a5096e7d8
|
feat(profiles): add inital version of dolphin.
|
2023-08-27 15:24:54 +01:00 |
|
Alexandre Pujol
|
ad3e5a5dcf
|
feat(profiles): add protonmail-bridge.
|
2023-08-27 15:17:36 +01:00 |
|
Alexandre Pujol
|
8cfe2780d4
|
feat(profiles): rewrite the spotify profile.
|
2023-08-27 15:00:02 +01:00 |
|
Alexandre Pujol
|
b0eed1ae39
|
feat(profiles): add transmission-gtk
|
2023-08-27 14:59:02 +01:00 |
|
Alexandre Pujol
|
4d79af2203
|
feat(profiles): add gnome-extension-gsconnect
|
2023-08-27 14:57:50 +01:00 |
|
Alexandre Pujol
|
75ef5ef6ad
|
feat(profiles): general update.
|
2023-08-27 14:54:04 +01:00 |
|
Alexandre Pujol
|
19331acaa9
|
feat(profiles): improve dbus related rules.
|
2023-08-27 14:46:49 +01:00 |
|
Alexandre Pujol
|
2db6b12a9b
|
chore: cosmetic on snap profiles.
|
2023-08-27 14:42:13 +01:00 |
|
Alexandre Pujol
|
eb1c03949f
|
feat(abs): improve some abstraction.
|
2023-08-27 14:40:56 +01:00 |
|
Alexandre Pujol
|
ec3c5cd62e
|
feat(profiles): improve kde integration.
|
2023-08-27 14:32:08 +01:00 |
|
Alexandre Pujol
|
41e0ac6ba8
|
feat(profiles): rewrite dpkg profile.
|
2023-08-27 13:30:01 +01:00 |
|
curiosityseeker
|
7f4cef2fff
|
Kwin wayland, kwin wayland wrapper and sddm (#198)
* Update kwin_wayland
Please check the udev rules and change them if needed - I'm not familiar with them.
* Update kwin_wayland_wrapper
* Update sddm
* Update kwin_wayland_wrapper
Reverting change for @{run}/user/@{uid}
* Update kwin_wayland: Correct udev rule
* Update kwin_wayland: adding the wayland abs
* Update sddm: reverting owner /tmo rules
* Update sddm: reverting /usr/share/X11/xkb rule
* Update sddm: adding the mesa abs
* Update kwin_wayland: order udev rules
|
2023-08-27 11:19:13 +00:00 |
|
Alexandre Pujol
|
393f7001dc
|
fix(aa-log): profile template.
See #182
|
2023-08-26 11:32:56 +01:00 |
|
Alexandre Pujol
|
d80b758968
|
feat(abs): modernize disk-read/write abs.
|
2023-08-24 19:34:21 +01:00 |
|
Alexandre Pujol
|
25782cb925
|
feat(abs): devices-usb - remove unneeded udev rule.
|
2023-08-24 19:32:45 +01:00 |
|
Alexandre Pujol
|
07cfbcd952
|
feat(profiles): modernize udev access.
|
2023-08-24 19:31:54 +01:00 |
|
Alexandre Pujol
|
73cb5a4545
|
feat(profiles): add kwin_wayland.
|
2023-08-23 18:14:22 +01:00 |
|
curiosityseeker
|
80b2124807
|
kded5, plasmashell, startplasma and sddm updates (#197)
* Update kded5
* Update startplasma
* Update plasmashell
* Update sddm
|
2023-08-23 12:54:28 +00:00 |
|
Alexandre Pujol
|
96b8f96137
|
feat(profiles): general update.
|
2023-08-22 23:23:47 +01:00 |
|
Alexandre Pujol
|
7273bde534
|
feat(aa-log): update default tunables according to guideline.
|
2023-08-22 23:09:34 +01:00 |
|
Alexandre Pujol
|
5516eef952
|
fix(aa-log): profile template.
|
2023-08-22 22:59:12 +01:00 |
|
Alexandre Pujol
|
f4ba16861f
|
feat(aa-log): minor apparmor profile struct tweak.
|
2023-08-22 22:58:35 +01:00 |
|
Alexandre Pujol
|
261778dbb3
|
revertL dbus session unix address.
|
2023-08-22 18:54:39 +01:00 |
|
Alexandre Pujol
|
360230b2a5
|
feat(profiles): general update.
|
2023-08-21 23:32:10 +01:00 |
|
Alexandre Pujol
|
6756ca8138
|
fix(abs): gstreamer cache structure.
|
2023-08-21 23:27:35 +01:00 |
|
Alexandre Pujol
|
3c6898db5a
|
fix(tunables): pci devices path.
|
2023-08-21 23:27:00 +01:00 |
|
Alexandre Pujol
|
0ed036efd5
|
feat(firefox): minor firefox update.
|
2023-08-21 23:23:08 +01:00 |
|
Alexandre Pujol
|
5dbc42aaab
|
feat(abs): update some abstractions.
|
2023-08-21 23:21:14 +01:00 |
|
Alexandre Pujol
|
310f36f433
|
feat(tunables): some variables tweak definition.
|
2023-08-21 23:10:31 +01:00 |
|
Alexandre Pujol
|
1c1bb66e9e
|
build: update make lint.
|
2023-08-19 21:55:48 +01:00 |
|
Alexandre Pujol
|
5badb6f32c
|
feat(tunables): add a new @{rand10} variable.
|
2023-08-19 14:33:07 +01:00 |
|
Alexandre Pujol
|
10d852ca1d
|
doc: update variables ref & minor improvment.
|
2023-08-19 14:32:08 +01:00 |
|
Alexandre Pujol
|
5704d1ba20
|
feat(profiles): various profile fixes.
|
2023-08-19 14:01:50 +01:00 |
|
Alexandre Pujol
|
1dbced42ed
|
feat(tunables): add a new @{pci} variable.
|
2023-08-18 22:35:32 +01:00 |
|
Alexandre Pujol
|
275d6b6e62
|
feat(profiles): replace old [0-9]* glob by @{int}
Beware some [0-9]* glob are actually not proper @{int}.
|
2023-08-18 17:09:53 +01:00 |
|
Alexandre Pujol
|
8ea4491a56
|
fix(abs): some block device use more than int as identifier.
|
2023-08-18 15:24:22 +01:00 |
|
Alexandre Pujol
|
a3f21425e5
|
fix: remove unused go import.
|
2023-08-17 23:36:46 +01:00 |
|
Alexandre Pujol
|
9650df00e3
|
feat(aa-log): add -r option to convert the log into rules.
|
2023-08-17 23:14:11 +01:00 |
|
Alexandre Pujol
|
d06a474b0c
|
feat(aa-log): parse log file to AA object to allow easy print.
|
2023-08-17 23:12:46 +01:00 |
|
Alexandre Pujol
|
574891d445
|
feat(aa-log): add AppArmorProfile.String using a template.
|
2023-08-17 23:11:11 +01:00 |
|
Alexandre Pujol
|
4f40cb6d78
|
feat(aa-log): add a new constructors for aa rules.
|
2023-08-17 23:05:07 +01:00 |
|
Alexandre Pujol
|
a8470dfa38
|
feat(aa-log): add a new apparmor profile struct
Also rewrite variables resolution to this new struct.
|
2023-08-17 23:00:52 +01:00 |
|
Alexandre Pujol
|
b2d093e125
|
feat(abs): restric abstraction by using new @{int} and @{rand} variables.
|
2023-08-17 21:24:02 +01:00 |
|
Alexandre Pujol
|
557d905543
|
Merge branch 'tunables' of https://github.com/nobody43/apparmor.d into nobody43-tunables
* 'tunables' of https://github.com/nobody43/apparmor.d:
dbus temp tails
Update apparmor.d
Update gdm-runtime-config
more unrelated changes
adjust date-time
random tails
rename to int, convert more profiles
fixes
tunables
|
2023-08-17 20:01:53 +01:00 |
|
curiosityseeker
|
7b018a60bd
|
Update pacman (#193)
* Update pacman
`@{exec_path} mr,` is causing the following errors:
```
ALLOWED pacman exec owner /usr/bin/pacman -> pacman//null-/usr/bin/pacman comm=bash requested_mask=x denied_mask=x
ALLOWED pacman//null-/usr/bin/pacman file_inherit owner /dev/pts/4 comm=pacman requested_mask=wr denied_mask=wr
ALLOWED pacman//null-/usr/bin/pacman file_mmap owner /usr/bin/pacman comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman file_mmap owner /usr/lib/ld-linux-x86-64.so.2 comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman open owner /etc/ld.so.preload comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman getattr owner /etc/ld.so.preload comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman open owner /etc/ld.so.cache comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman getattr owner /etc/ld.so.cache comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman open owner /usr/lib/libalpm.so.13.0.2 comm=pacman requested_mask=r denied_mask=r
ALLOWED pacman//null-/usr/bin/pacman getattr owner /usr/lib/libalpm.so.13.0.2 comm=pacman requested_mask=r denied_mask=r
etc.
```
`@{exec_path} mrix,` fixes it.
Commits for new profiles for `checkrebuild` and `pkgfile` will follow.
* Fix pacman update
* Update apparmor.d/groups/pacman/pacman
Co-authored-by: Alex <roddhjav@users.noreply.github.com>
---------
Co-authored-by: Alex <roddhjav@users.noreply.github.com>
|
2023-08-17 18:49:56 +00:00 |
|
curiosityseeker
|
c2c745888c
|
Update complete
Move entries from child-open to this abstraction.
|
2023-08-17 19:43:29 +01:00 |
|
curiosityseeker
|
2299eb00f6
|
Partially revert change in child-open
|
2023-08-17 19:43:29 +01:00 |
|