apparmor.d

Author	SHA1	Message	Date
Alexandre Pujol	60b9127916	feat(profile): update pipewire profiles.	2025-05-29 23:53:47 +02:00
Alexandre Pujol	32a9806219	feat(fsp): update systemd user drop in files with AppArmorProfile set to the target profile.	2025-05-29 23:52:40 +02:00
Alexandre Pujol	9325dd5ca0	feat(profile): revisit systemd-udevd and ensure most program get transitionned confined.	2025-05-29 23:43:19 +02:00
Alexandre Pujol	581a55c726	feat(profile): update systemd-homework/homed as they get stacked.	2025-05-29 23:40:49 +02:00
Alexandre Pujol	28d9d48de4	feat(profile): small update to systemd profiles.	2025-05-29 23:39:35 +02:00
Alexandre Pujol	38c6e35a1b	feat(profile): add some ubuntu specific profiles.	2025-05-29 23:33:37 +02:00
Alexandre Pujol	7f684ee5dd	feat(profile): integrate fsp with apt and ubuntu.	2025-05-29 23:29:52 +02:00
Alexandre Pujol	3984cf8acc	feat(profile): initial profile for pollinate.	2025-05-29 23:27:55 +02:00
Alexandre Pujol	d5a65ba831	feat(profile): add a few small profile needed by fsp.	2025-05-29 23:26:18 +02:00
Alexandre Pujol	1aa0142a6a	feat(fsp): add/update systemd drop in files with AppArmorProfile set to the target profile.	2025-05-29 23:20:32 +02:00
Alexandre Pujol	8ff829542d	feat(profile): add profile for some named minimal systemd service.	2025-05-29 23:13:04 +02:00
Alexandre Pujol	a194f28c21	feat(fsp): add sd-mount.	2025-05-29 22:59:02 +02:00
Alexandre Pujol	9125686973	feat(fsp): add the new sdu profile as service and stacked profile manager for system.	2025-05-29 22:44:00 +02:00
Alexandre Pujol	5940f0117b	feat(fsp): add the new sdu profile as service and stacked profile manager for user.	2025-05-29 22:37:56 +02:00
Alexandre Pujol	dd2187552b	feat(fsp): remove the now deprecated generic system service profiles.	2025-05-29 22:35:28 +02:00
Alexandre Pujol	3dc8a74ec0	feat(fsp): rewrite the systemd-user profile.	2025-05-29 15:16:26 +02:00
Alexandre Pujol	47bafeb67b	feat(fsp): rewrite the systemd profile.	2025-05-29 15:06:52 +02:00
Alexandre Pujol	8f3f3816ed	feat(fsp): systemd drop in files: configure stacked profile It comes as a replacement of old and unsecure config that was disabling the nnp flag. The new solution is: 1. Safe 2. Scalable as hundred of profile could be configured this way	2025-05-26 23:31:35 +02:00
Alexandre Pujol	4ffbf84a00	feat(fsp): remove the default profiles.	2025-05-26 23:20:37 +02:00
Alexandre Pujol	217448d09a	doc: improve documentation on the use of some special abstraction.	2025-05-26 01:18:11 +02:00
Alexandre Pujol	04b6cade64	feat(profile): use profile variable in rules such as in dbus, ptrace, unix...	2025-05-26 01:17:14 +02:00
Alexandre Pujol	f717ea7383	feat(aa): add a mount flag.	2025-05-26 01:01:08 +02:00
Alexandre Pujol	c07c5838e4	build: add RBAC filter to the only/exclude directive.	2025-05-26 01:00:08 +02:00
Alexandre Pujol	780ca65953	build(fsp): set stacked variables.	2025-05-26 00:57:37 +02:00
Alexandre Pujol	d9430c68c1	build: improve error message in the stack direcive.	2025-05-26 00:55:48 +02:00
Alexandre Pujol	e83a9a60dc	feat(profile): finalize upgrade process.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	a8ab6da6f3	feat(profile): add runit-helper.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	ead321e07e	feat(profile): improve the upgrade stack.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	acc35c3bd7	ci: show files installed in sbin.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	d575812e29	fix(profile): snapd journalctl subprofile.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	931c207089	feat(profile): simplify needrestart & fix pam-auth-update.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	ca5b4c99ba	ci: disable compatibility check with userspace tools.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	b1435dd491	feat(profile): ubuntu: update upgrade process.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	7361c21c40	feat(profile): add mdadm-mkconf.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	813758a1e0	feat(profile): add debconf-escape, update dpkg-scripts.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	8546533ad1	fix(build): flag generation.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	30bbd6d56a	feat(profile): cron: cleanup direct exec.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	774106b7e5	feat(profile): update some systemd profiles.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	a7807408b6	feat(profile): update some update-* profiles.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	0a5743fa46	feat(profile): add profile for more update-* tools.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	17624b95d8	feat(profile): update ucf profiles.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	e7fb186093	feat(profile): update kernerl-install.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	4e4f8d8a0e	build: update sbin.list	2025-05-26 00:47:47 +02:00
Alexandre Pujol	8c526b32c6	feat(profile): small update on core upgrade profiles.	2025-05-26 00:47:47 +02:00
Alexandre Pujol	649d2da8d2	feat(profile): expand and restrict motd.	2025-05-26 00:47:46 +02:00
Alexandre Pujol	21b31a06a7	feat(profile): rewrite the run-parts profile.	2025-05-26 00:47:46 +02:00
Alexandre Pujol	c03bcbef7a	feat(profile): rewrite the needrestart profiles.	2025-05-26 00:47:46 +02:00
Alexandre Pujol	8b542434bd	feat(profile): update kdump profiles.	2025-05-26 00:47:46 +02:00
Alexandre Pujol	c70f9b22fc	feat(tunable): add more variables for profile name.	2025-05-26 00:47:46 +02:00
Alexandre Pujol	3e098b7152	feat(profile): initramfs: add hooks and scripts.	2025-05-26 00:47:46 +02:00

1 2 3 4 5 ...

3530 commits