felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3026 commits 5 branches 0 tags 16 MiB
Commit graph

482 commits

Author SHA1 Message Date
Alexandre Pujol
4e5f4cb06a
feat: profiles and integration tests improvments. 
Add the udbus variable to be used in `unix bind` rule for dbus.
 2024-11-19 19:04:27 +00:00
Alexandre Pujol
24ea5f0a3a
feat(tunable): add p_dbus_* variables. 
This allow for better integration for system when dbus is not confined.
 2024-11-13 12:23:36 +00:00
Alexandre Pujol
66455a9251
feat(profile): improve support for some profiles. 
Most of the rules have come from the integration tests.
 2024-11-12 22:18:11 +00:00
Alexandre Pujol
9a3adc66d0
feat(profile): small profile update. 2024-11-11 22:18:39 +00:00
EricLin0509
0a8727e837 Fix gnome-boxes couldn't found VM that previously created 2024-10-27 14:20:17 +00:00
Alexandre Pujol
38b973c596
chore(profile): remove trailing whitespace in profiles. 2024-10-22 20:03:24 +01:00
François Guerraz
d9e8502f74 Photos from contacts in google don't have an extension 2024-10-21 20:21:28 +00:00
Alexandre Pujol
37bafddc80
chore: enforce indentation consistency across profile. 2024-10-16 23:36:13 +01:00
Alexandre Pujol
ebdcb94d7e
feat(profile): update gnome profiles. 2024-10-14 19:35:37 +01:00
Alexandre Pujol
61a27bc336
feat(profile): initial integration with attached path. 
The feature is not yet enabled.

See https://apparmor.pujol.io/development/internal/#re-attached-path
 2024-10-11 14:13:17 +01:00
Alexandre Pujol
6b0b498244
feat(profile): small profiles update. 2024-10-06 20:43:18 +01:00
Alexandre Pujol
7ccaab8234
chore(profile): add abi and local include when missing. 2024-10-06 15:57:47 +01:00
Alexandre Pujol
7b73adceeb
feat(abs): common/gnome: remove open_path from the abs, add bus accessibility. 2024-10-04 14:31:54 +01:00
Alexandre Pujol
d6b7bef89e
feat(profile): enable abi 4 rules by default. 2024-10-02 14:19:26 +01:00
Alexandre Pujol
5ed4df6916
feat(profile): update all profile to abi 4.0 by default. 2024-10-02 14:04:08 +01:00
Alexandre Pujol
239ae17119
feat(profile): modernize some profiles. 2024-10-02 13:46:30 +01:00
Alexandre Pujol
af50944fb5
feat(profile): general update. 2024-10-01 20:17:13 +01:00
Alexandre Pujol
8730c09b96
feat(profile): general update. 2024-10-01 17:43:54 +01:00
Alexandre Pujol
c6c4920598
feat(profile): newer gnome want to read /. 2024-09-26 20:36:14 +01:00
Alexandre Pujol
3f13aa77bf
feat(profile): update some dbus rules. 2024-09-26 20:29:33 +01:00
Alexandre Pujol
28b32f1ae3
feat(profile): restrict some access to @{PROC}/@{pid}. 2024-09-25 14:00:29 +01:00
Alexandre Pujol
69f9e8464f
feat(profile): update profiles for gnome 47. 2024-09-25 00:14:02 +01:00
Alexandre Pujol
31cadd634f
feat(abs): improve some gnome profiles. 2024-09-23 15:11:50 +01:00
Alexandre Pujol
cc33e29af0
feat(profile): dbus: allow to talk with org.gtk.vfs for some profiles. 2024-09-21 13:35:57 +01:00
Alexandre Pujol
89240929e9
feat(profile): thunderbird: allow to open attachment. 2024-09-21 13:19:35 +01:00
Alexandre Pujol
8979d84633
feat(profile): remove rules already included in the base abs. 2024-09-20 23:30:09 +01:00
Alexandre Pujol
96defe021c
feat(abs): add the pkexec app abs. 2024-09-20 23:24:15 +01:00
Alexandre Pujol
fa668af54a
feat(profile): add some gnome profiles. 2024-09-19 00:00:54 +01:00
Alexandre Pujol
cc139f1144
feat(abs): update kde abs with common access. 2024-09-18 18:01:16 +01:00
Alexandre Pujol
02d8aaee7f
feat(profile): improve integration with kde 
see #496
 2024-09-18 16:59:44 +01:00
Alexandre Pujol
db064b651e
feat(profile): general update. 2024-09-13 19:47:07 +01:00
Alexandre Pujol
ab7f45bc31
feat(profile): general update. 2024-09-12 22:26:47 +01:00
Alexandre Pujol
49b8967bb2
feat(profile): improve the use of org.chromium.Chromium.@{rand6}. 2024-09-10 18:20:41 +01:00
Alexandre Pujol
c2bc55dc46
feat(profile): general update. 2024-09-09 20:53:12 +01:00
Alexandre Pujol
c7181ecadf
feat(profile): general update. 2024-09-09 19:57:49 +01:00
Alexandre Pujol
6b191d9ada
feat(profile): use @{int} on systemd/inhibit. 2024-09-05 14:23:16 +01:00
Alexandre Pujol
35dcde9d90
feat(tunable): add the new version variable. 2024-09-05 14:05:35 +01:00
Alexandre Pujol
26641f585c
feat(profile): add gnome-boxes 
see  #457
 2024-09-02 14:14:16 +01:00
Alexandre Pujol
265e3928c1
feat(profile): mesa: mesa_shader_cache_db is often passed as fd. 2024-09-01 20:13:51 +01:00
EliasTheGrandMasterOfMistakes
1f83ca358e gnome-shell: Integrate nm-openvpn-auth-dialog on gnome-shell 
VPNs that uses gnome authentication like ProtonVPN
depends of gnome-shell acess nm-openvpn-auth-dialog

Co-authored-by: Alexandre Pujol <alexandre@pujol.io>
 2024-08-28 18:42:08 +00:00
Alexandre Pujol
ec7715aaf3
feat(profile): general update. 2024-08-28 18:52:55 +01:00
Alexandre Pujol
006ed3f681
fix(profile): fscrypt works on a specific homedir. 
fix #430
 2024-08-21 10:10:28 +01:00
Alexandre Pujol
788d865939
feat(profile): general update. 2024-08-20 20:56:58 +01:00
Alexandre Pujol
fb6e718b98
feat(profile): gdm-session-worker: initial support for fscrypt. 
fix #430
 2024-08-20 19:29:43 +01:00
Alexandre Pujol
d9ca201519
feat(profile): cleanup handling of gnome session. 2024-07-20 13:20:45 +01:00
Alexandre Pujol
52a2ae8c23
feat(profile): general update. 
see #422
 2024-07-20 13:13:27 +01:00
Alexandre Pujol
245898a9d2
feat(profile): ensure any gnome extension can be launched. 
see #422
 2024-07-20 13:06:30 +01:00
Alexandre Pujol
cb30dcc4bc
feat(profile): general update. 
see #416
 2024-07-15 23:47:01 +01:00
Alexandre Pujol
6cd01064ae
feat(profile): general update. 2024-07-15 23:12:39 +01:00
Alexandre Pujol
9c9f743e1e
fix: variour small fixes. 
See #409
 2024-07-14 12:12:30 +01:00