apparmor.d

Author	SHA1	Message	Date
Alexandre Pujol	45d7cf48c4	fix(profile): small improvment raised by the tests.	2025-05-01 18:48:31 +02:00
Alexandre Pujol	fd17a77b17	feat(profile): use @{sbin} for all program inside /usr/sbin.	2025-04-28 21:27:57 +02:00
Alexandre Pujol	379a093b10	feat(fsp): small improvment to systemd profiles.	2025-04-13 22:46:53 +02:00
Alexandre Pujol	5e225ed0ec	feat(fsp): small improvments.	2025-03-23 14:16:31 +01:00
Alexandre Pujol	41757ec4e4	feat(profile): remove now automatically added internal dbus rules.	2025-03-23 13:40:45 +01:00
Alexandre Pujol	20699b20b6	fix: minor build issue.	2025-03-09 23:58:18 +01:00
Alexandre Pujol	ab41d2e0f3	feat(fsp): improve the systemd profiles.	2025-03-09 23:12:01 +01:00
Alexandre Pujol	da7958a2f9	feat(fsp): improve the base systemd profiles.	2025-03-07 00:00:24 +01:00
Alexandre Pujol	8806030a0a	feat(profile): more use @{etc_ro} when we know it is needed.	2025-01-25 22:31:29 +01:00
Alexandre Pujol	4e5f4cb06a	feat: profiles and integration tests improvments. Add the udbus variable to be used in `unix bind` rule for dbus.	2024-11-19 19:04:27 +00:00
Alexandre Pujol	24ea5f0a3a	feat(tunable): add p_dbus_* variables. This allow for better integration for system when dbus is not confined.	2024-11-13 12:23:36 +00:00
Alexandre Pujol	185dc96d45	feat(profile): general update.	2024-10-14 19:32:48 +01:00
Alexandre Pujol	9b57546312	chore(fsp): add note of current profile stage.	2024-10-03 13:09:20 +01:00
Alexandre Pujol	5ed4df6916	feat(profile): update all profile to abi 4.0 by default.	2024-10-02 14:04:08 +01:00
Alexandre Pujol	62cb546afa	feat(fps): improve systemd profiles.	2024-09-23 14:59:44 +01:00
Alexandre Pujol	db064b651e	feat(profile): general update.	2024-09-13 19:47:07 +01:00
Alexandre Pujol	2af1d06f18	feat(tunable): add @{editor_path} & @{pager_path}.	2024-09-08 13:25:49 +01:00
Alexandre Pujol	6cd01064ae	feat(profile): general update.	2024-07-15 23:12:39 +01:00
REmerald	f1a0349978	feat(groups/{_,k,n,p}*): vim syntax support Add vim modeline instructing the editor to use syntax plugin provided by apparmor. Continuation of #394 to keep the diff list relatively short.	2024-06-16 17:31:28 +01:00
Alexandre Pujol	5c8dda1ced	feat(profile): remove rule moved in the base or nameservice abstraction.	2024-06-08 22:49:28 +01:00
Alexandre Pujol	89abbae6bd	Merge branch 'feat/aa' Improve go apparmor lib. * aa: (62 commits) feat(aa): handle appending value to defined variables. chore(aa): cosmetic. fix: userspace prebuild test. chore: cleanup unit test. feat(aa): improve log conversion. feat(aa): move conversion function to its own file & add unit tests. fix: go linter issue & not defined variables. tests(aa): improve aa unit tests. tests(aa): improve rules unit tests. feat(aa): ensure the prebuild jobs are working. feat(aa): add more unit tests. chore(aa): cleanup. feat(aa): Move sort, merge and format methods to the rules interface. feat(aa): add the hat template. feat(aa): add the Kind struct to manage aa rules. feat(aa): cleanup rules methods. feat(aa): add function to resolve include preamble. feat(aa): updaqte mount flags order. feat(aa): update default tunable selection. feat(aa): parse apparmor preamble files. ...	2024-05-30 19:29:34 +01:00
Alexandre Pujol	bc216176a3	fix: go linter issue & not defined variables.	2024-05-30 12:28:12 +01:00
Alexandre Pujol	1739c07ca1	feat(profile): general update.	2024-05-11 17:38:43 +01:00
Alexandre Pujol	4b4e14b1d6	fix(profile): various fix & cleanup	2024-05-06 20:33:01 +01:00
Alex	f75e5047df	Merge branch 'main' into feat/update	2024-05-06 19:56:11 +01:00
Alexandre Pujol	3f69b9fec4	feat(profile): use the new @{tmp} variable. It is only used with the owner statement.	2024-05-02 22:12:02 +01:00
Jeroen Rijken	8b3613fa48	Various updates all over Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-04-28 16:08:03 +02:00
Alexandre Pujol	4527149c1f	fix: no comments...	2024-04-03 22:01:49 +01:00
Alexandre Pujol	6d3aeaa228	fix: aa syntax.	2024-04-03 21:25:10 +01:00
Alexandre Pujol	095254864f	feat(profile): general update.	2024-04-03 21:04:18 +01:00
Alexandre Pujol	6dd0c36e9a	feat: prefix variables that refer to a profile	2024-04-02 13:41:08 +01:00
Alexandre Pujol	1f8507548f	feat(fsp): update the default profile. Note: it is still not usable.	2024-03-29 19:33:55 +00:00
Alexandre Pujol	197c1bd78a	feat(profile): general update.	2024-03-27 21:53:11 +00:00
Alexandre Pujol	b9cfd787c8	fix(ci): minor fixes.	2024-03-27 17:17:15 +00:00
Alexandre Pujol	b88b8b8c26	refractor(abs): move common and app abstraction to their own abstractions subfolder. As the number of abstraction is increasing, it is valuable to separate "base" abstractions to programs specific ones.	2024-03-27 15:11:21 +00:00
Alexandre Pujol	6052b95347	feat(profile): update stack directives.	2024-03-21 23:11:07 +00:00
Alexandre Pujol	6c38e90b5e	feat(profile): update dbus directive format.	2024-03-21 23:03:08 +00:00
Alexandre Pujol	7b880a5142	feat(profile): general update.	2024-03-20 00:04:39 +00:00
Alexandre Pujol	cbd0b61491	feat(profile): improve sudo abstraction.	2024-03-19 22:00:05 +00:00
Alexandre Pujol	091a93194d	feat(fsp): stack more profile on systemd.	2024-03-19 11:30:45 +00:00
Alexandre Pujol	77945674a5	feat(profile): general update.	2024-03-18 14:31:01 +00:00
Alexandre Pujol	0c5e71f971	feat(profile): cleanup some rules already included in abs.	2024-03-16 21:40:35 +00:00
Alexandre Pujol	b15aaae553	feat(profile): add support for new dbus-session in systemd-user.	2024-03-16 21:33:36 +00:00
Alexandre Pujol	c6717d2bab	feat(profile): use new dbus profile in dbus label.	2024-03-16 13:10:25 +00:00
Alexandre Pujol	1b8b52962b	feat(fsp): update mounting rules.	2024-03-15 23:45:18 +00:00
Alexandre Pujol	467c38724a	feat(profile): clean superfluous openssl abstraction includes apparmor.d equivalent of https://gitlab.com/apparmor/apparmor/-/merge_requests/1179	2024-03-12 16:00:44 +00:00
Alexandre Pujol	ad8e5a9797	feat(fsp): update profile stack.	2024-03-10 21:17:50 +00:00
Alexandre Pujol	a8b8bf52f8	feat(fsp): stack audio profiles using the new stack directive.	2024-03-10 14:51:22 +00:00
Alexandre Pujol	16d0af1c5e	feat(fsp): improve systemd profile.	2024-03-10 14:49:31 +00:00
Alexandre Pujol	faa40c8cde	feat(fsp): cleanup main systemd profiles.	2024-03-05 16:53:34 +00:00

1 2

93 commits