feat(groups/{u,v,w,x}*): vim syntax support

Add vim modeline instructing the editor to use syntax plugin provided by apparmor. Continuation of #395 to keep the diff list relatively short.
2024-06-16 17:28:45 +03:00 · 2024-06-16 17:28:45 +03:00 · 68d1222029
commit 68d1222029
parent f1a0349978
126 changed files with 348 additions and 96 deletions
--- a/apparmor.d/groups/virt/cni-bandwidth
+++ b/apparmor.d/groups/virt/cni-bandwidth
@ -22,3 +22,5 @@ profile cni-bandwidth @{exec_path} {

  include if exists <local/cni-bandwidth>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-bridge
+++ b/apparmor.d/groups/virt/cni-bridge
@ -15,4 +15,6 @@ profile cni-bridge @{exec_path} {
  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  include if exists <local/cni-bridge>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-calico
+++ b/apparmor.d/groups/virt/cni-calico
@ -45,3 +45,5 @@ profile cni-calico @{exec_path} flags=(attach_disconnected) {

  include if exists <local/cni-calico>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-firewall
+++ b/apparmor.d/groups/virt/cni-firewall
@ -15,4 +15,6 @@ profile cni-firewall @{exec_path} {
  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  include if exists <local/cni-firewall>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-flannel
+++ b/apparmor.d/groups/virt/cni-flannel
@ -15,4 +15,6 @@ profile cni-flannel @{exec_path} flags=(complain,attach_disconnected){
  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  include if exists <local/cni-flannel>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-host-local
+++ b/apparmor.d/groups/virt/cni-host-local
@ -15,4 +15,6 @@ profile cni-host-local @{exec_path} flags=(complain,attach_disconnected){
  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  include if exists <local/cni-host-local>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-loopback
+++ b/apparmor.d/groups/virt/cni-loopback
@ -26,3 +26,5 @@ profile cni-loopback @{exec_path} flags=(attach_disconnected) {

  include if exists <local/cni-loopback>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-portmap
+++ b/apparmor.d/groups/virt/cni-portmap
@ -23,3 +23,5 @@ profile cni-portmap @{exec_path} {

  include if exists <local/cni-portmap>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-tuning
+++ b/apparmor.d/groups/virt/cni-tuning
@ -15,4 +15,6 @@ profile cni-tuning @{exec_path} {
  @{sys}/kernel/mm/transparent_hugepage/hpage_pmd_size r,

  include if exists <local/cni-tuning>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cni-xtables-nft
+++ b/apparmor.d/groups/virt/cni-xtables-nft
@ -32,3 +32,5 @@ profile cni-xtables-nft {

    @{PROC}/@{pids}/net/ip_tables_names r,
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-askpass
+++ b/apparmor.d/groups/virt/cockpit-askpass
@ -14,4 +14,6 @@ profile cockpit-askpass @{exec_path} {
  @{exec_path} mr,

  include if exists <local/cockpit-askpass>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-bridge
+++ b/apparmor.d/groups/virt/cockpit-bridge
@ -79,4 +79,6 @@ profile cockpit-bridge @{exec_path} {
  /dev/ptmx rw,

  include if exists <local/cockpit-bridge>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-certificate-ensure
+++ b/apparmor.d/groups/virt/cockpit-certificate-ensure
@ -23,4 +23,6 @@ profile cockpit-certificate-ensure @{exec_path} flags=(attach_disconnected) {
  owner @{run}/cockpit/tls/server/{,**} rw,

  include if exists <local/cockpit-certificate-ensure>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-certificate-helper
+++ b/apparmor.d/groups/virt/cockpit-certificate-helper
@ -30,4 +30,6 @@ profile cockpit-certificate-helper @{exec_path} {

  include if exists <local/cockpit-certificate-helper>

-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-desktop
+++ b/apparmor.d/groups/virt/cockpit-desktop
@ -13,4 +13,6 @@ profile cockpit-desktop @{exec_path} {
  @{exec_path} mr,

  include if exists <local/cockpit-desktop>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-pcp
+++ b/apparmor.d/groups/virt/cockpit-pcp
@ -40,4 +40,6 @@ profile cockpit-pcp @{exec_path} {
  owner @{PROC}/@{pid}/mounts r,

  include if exists <local/cockpit-pcp>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-session
+++ b/apparmor.d/groups/virt/cockpit-session
@ -54,3 +54,5 @@ profile cockpit-session @{exec_path} flags=(attach_disconnected) {

  include if exists <local/cockpit-session>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-ssh
+++ b/apparmor.d/groups/virt/cockpit-ssh
@ -14,4 +14,6 @@ profile cockpit-ssh @{exec_path} {
  @{exec_path} mr,

  include if exists <local/cockpit-ssh>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-tls
+++ b/apparmor.d/groups/virt/cockpit-tls
@ -20,4 +20,6 @@ profile cockpit-tls @{exec_path} flags=(attach_disconnected) {
  owner @{run}/cockpit/tls/{,**} rw,

  include if exists <local/cockpit-tls>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-update-motd
+++ b/apparmor.d/groups/virt/cockpit-update-motd
@ -36,4 +36,6 @@ profile cockpit-update-motd @{exec_path} {
  }

  include if exists <local/cockpit-update-motd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-ws
+++ b/apparmor.d/groups/virt/cockpit-ws
@ -22,4 +22,6 @@ profile cockpit-ws @{exec_path} {
  owner @{PROC}/@{pid}/fd/ r,

  include if exists <local/cockpit-ws>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/cockpit-wsinstance-factory
+++ b/apparmor.d/groups/virt/cockpit-wsinstance-factory
@ -15,4 +15,6 @@ profile cockpit-wsinstance-factory @{exec_path} {
  @{exec_path} mr,

  include if exists <local/cockpit-wsinstance-factory>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/containerd
+++ b/apparmor.d/groups/virt/containerd
@ -122,3 +122,5 @@ profile containerd @{exec_path} flags=(attach_disconnected) {

  include if exists <local/containerd>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/containerd-shim-runc-v2
+++ b/apparmor.d/groups/virt/containerd-shim-runc-v2
@ -58,3 +58,5 @@ profile containerd-shim-runc-v2 @{exec_path} flags=(attach_disconnected) {

  include if exists <local/containerd-shim-runc-v2>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/docker-proxy
+++ b/apparmor.d/groups/virt/docker-proxy
@ -25,4 +25,6 @@ profile docker-proxy @{exec_path} {
  @{PROC}/sys/net/core/somaxconn r,

  include if exists <local/docker-proxy>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/dockerd
+++ b/apparmor.d/groups/virt/dockerd
@ -99,4 +99,6 @@ profile dockerd @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pids}/uid_map r,

  include if exists <local/dockerd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/k3s
+++ b/apparmor.d/groups/virt/k3s
@ -174,3 +174,5 @@ profile k3s @{exec_path} flags=(attach_disconnected) {

  include if exists <local/k3s>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/kubernetes-pause
+++ b/apparmor.d/groups/virt/kubernetes-pause
@ -18,3 +18,5 @@ profile kubernetes-pause @{exec_path} flags=(attach_disconnected) {

  include if exists <local/kubernetes-pause>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/libvirt-dbus
+++ b/apparmor.d/groups/virt/libvirt-dbus
@ -35,4 +35,6 @@ profile libvirt-dbus @{exec_path} {
  owner @{PROC}/@{pid}/fd/ r,

  include if exists <local/libvirt-dbus>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/libvirtd
+++ b/apparmor.d/groups/virt/libvirtd
@ -294,3 +294,5 @@ profile libvirtd @{exec_path} flags=(attach_disconnected) {
  include if exists <usr/libvirtd>
  include if exists <local/libvirtd>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virt-aa-helper
+++ b/apparmor.d/groups/virt/virt-aa-helper
@ -64,3 +64,5 @@ profile virt-aa-helper @{exec_path} {
  include if exists <usr/virt-aa-helper.d>
  include if exists <local/virt-aa-helper>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtinterfaced
+++ b/apparmor.d/groups/virt/virtinterfaced
@ -40,4 +40,6 @@ profile virtinterfaced @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pids}/stat r,

  include if exists <local/virtinterfaced>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtiofsd
+++ b/apparmor.d/groups/virt/virtiofsd
@ -62,4 +62,6 @@ profile virtiofsd @{exec_path} {
  # }

  include if exists <local/virtiofsd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtlockd
+++ b/apparmor.d/groups/virt/virtlockd
@ -13,4 +13,6 @@ profile virtlockd @{exec_path} {
  @{exec_path} mr,

  include if exists <local/virtlockd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtlogd
+++ b/apparmor.d/groups/virt/virtlogd
@ -44,3 +44,5 @@ profile virtlogd @{exec_path} flags=(attach_disconnected) {

  include if exists <local/virtlogd>
 }
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtnetworkd
+++ b/apparmor.d/groups/virt/virtnetworkd
@ -41,4 +41,6 @@ profile virtnetworkd @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pids}/fd/ r,

  include if exists <local/virtnetworkd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtnodedevd
+++ b/apparmor.d/groups/virt/virtnodedevd
@ -91,4 +91,6 @@ profile virtnodedevd @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/mtrr w,

  include if exists <local/virtnodedevd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtsecretd
+++ b/apparmor.d/groups/virt/virtsecretd
@ -34,4 +34,6 @@ profile virtsecretd @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pids}/stat r,

  include if exists <local/virtsecretd>
-}
+}
+
+# vim:syntax=apparmor
--- a/apparmor.d/groups/virt/virtstoraged
+++ b/apparmor.d/groups/virt/virtstoraged
@ -64,4 +64,6 @@ profile virtstoraged @{exec_path} flags=(attach_disconnected) {
  owner @{PROC}/@{pids}/fd/ r,

  include if exists <local/virtstoraged>
-}
+}
+
+# vim:syntax=apparmor