felipe/apparmor.d
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2442 commits 5 branches 0 tags 16 MiB
Commit graph

1759 commits

Author SHA1 Message Date
Alexandre Pujol
5d6c5e7baa
feat(dbus): update some abs. 2023-12-05 20:32:02 +00:00
Alexandre Pujol
95b62568b1
feat(dbus): add new dbus abstraction 2023-12-05 20:30:34 +00:00
Alexandre Pujol
94ff73c51b
fix: ensure all ibus deamon can run. 
Fix #260
 2023-12-05 13:07:59 +00:00
Alexandre Pujol
c066ef0036
feat(dbus): rewrite some dbus rules (6). 2023-12-05 00:19:43 +00:00
Alexandre Pujol
da3b5103e4
feat(dbus): rewrite some dbus rules (5). 2023-12-04 21:54:45 +00:00
Alexandre Pujol
f5862c9862
feat(dbus): update common dbus abs. 2023-12-04 21:28:10 +00:00
Alexandre Pujol
8162c0aa2a
feat(dbus): add more dbus abstraction (2) 2023-12-04 21:27:18 +00:00
Alexandre Pujol
7f81da3a71
feat(profile): allow custom GUI launcher to start in xinit. 
See #259
 2023-12-04 20:22:34 +00:00
Alexandre Pujol
16c2bf5662
feat(dbus): add more dbus abstraction. 2023-12-04 18:58:03 +00:00
Alexandre Pujol
2432414ae2
feat(dbus): rewrite some dbus rules (4). 2023-12-04 18:52:10 +00:00
Alexandre Pujol
dd1d9107e8
feat(profile): general update. 2023-12-03 16:57:50 +00:00
Alexandre Pujol
1edf507abf
feat(dbus): rewrite some dbus rules (4). 2023-12-03 16:53:25 +00:00
Alexandre Pujol
2af165403a
feat(dbus): rewrite some dbus rules (3). 2023-12-02 16:05:40 +00:00
Alexandre Pujol
92ebab604a
feat(dbus): add more dbus abstractions. 2023-12-02 15:52:00 +00:00
Alexandre Pujol
6810f4b050
fix(profile): add config dir on yt-dlp 
fix #258
 2023-12-01 21:57:01 +00:00
Alexandre Pujol
3fc787e073
fix(profile): add cache dir for MPV. 
See #257
 2023-12-01 21:53:59 +00:00
Alexandre Pujol
505770cd5a
feat(dbus): rewrite some dbus rules (2). 2023-12-01 21:53:09 +00:00
Alexandre Pujol
6d1ff256af
feat(dbus): rewrite some dbus rules (1). 2023-12-01 20:58:21 +00:00
Alexandre Pujol
d6888a65c4
feat(dbus): add initial polkit abstraction. 2023-12-01 20:42:41 +00:00
Alexandre Pujol
7f38dd255e
feat(profile): general update. 2023-12-01 13:22:45 +00:00
Alexandre Pujol
952ef478c0
fix(profile): brave-sandbox lib_dirs path. 
See: #255
 2023-12-01 11:13:34 +00:00
Alexandre Pujol
4382a34b9e
feat(profile): add rfkill on networkd. 
See #256
 2023-12-01 11:09:46 +00:00
Alexandre Pujol
8e45076077
feat(abs): add initial version of dbus abs. 2023-11-30 23:35:54 +00:00
Alexandre Pujol
d75fa9bbd5
feat(dbus): dbus rules cleanup (3) 2023-11-30 23:20:29 +00:00
Alexandre Pujol
cd391bae01
feat(dbus): dbus rules cleanup (2) 2023-11-30 22:42:49 +00:00
Alexandre Pujol
8a49f2ebe1
feat(dbus): dbus rules cleanup (1) 
- move common rule to abs
- ensure peer name or label are always present
- try to make rule more standard/easier to read
 2023-11-30 22:39:44 +00:00
Alexandre Pujol
9517800a9d
feat(dbus): simple dbus rules cleaning. 2023-11-30 21:32:50 +00:00
Alexandre Pujol
dd06e3da65
feat(profile): modernise the calibre profile. 2023-11-30 21:25:41 +00:00
Alexandre Pujol
796cf32076
feat(profile): better kde integration. 
See #237
 2023-11-30 19:04:59 +00:00
Alexandre Pujol
c27ec457d0
feat(profile): cleanup some dbus path/interfaces 2023-11-30 00:29:37 +00:00
Alexandre Pujol
459fe7c905
feat(profile): use the new bus/atspi abstraction in the profiles. 2023-11-30 00:22:34 +00:00
Alexandre Pujol
fe0cb4b48d
feat(profile): some cleanup in thunderbird. 2023-11-29 22:58:35 +00:00
Alexandre Pujol
5af4d3c921
fix(profiles): modernise plank & kstart 
- Still wip profile
- Should enable additional DE to boot
 2023-11-29 22:29:41 +00:00
Alexandre Pujol
f06f01a36a
Merge branch 'feat/update' of https://github.com/Jeroen0494/apparmor.d into Jeroen0494-feat/update 
* 'feat/update' of https://github.com/Jeroen0494/apparmor.d:
  signal to socket
  Add kstart, XDG KDE updates
  Plank profile
  containerd and KDE updates
 2023-11-29 22:20:29 +00:00
Alexandre Pujol
f5e7cd7d0c
feat(abs): add some common dbus rules. 2023-11-29 22:10:23 +00:00
Alexandre Pujol
94f18ed6c1
feat(abs): add new atspi dbus abstraction. 2023-11-29 22:09:05 +00:00
Alexandre Pujol
60e4a01a76
feat(abs): add some files into the base abstaction. 2023-11-29 17:50:26 +00:00
Alexandre Pujol
34630b2adf
fix(profile): private-files abs already included in private-files-strict. 
See c8fd896
 2023-11-28 11:04:26 +00:00
Alexandre Pujol
a48daa9c9e
fix(profile): reduce the number of profile transition. 
See: 209688f
 2023-11-28 10:57:48 +00:00
Alexandre Pujol
209688fe86
feat(profile): general update. 2023-11-27 19:35:42 +00:00
Alexandre Pujol
fade97486d
feat(profile): add udev child & low-memory profiles. 2023-11-27 19:32:50 +00:00
Alexandre Pujol
cdfa76924b
feat(profile): add dleyna profiles. 2023-11-27 19:27:44 +00:00
Alexandre Pujol
c8fd896a0b
feat(profile): add nautilus previewer. 2023-11-27 19:26:13 +00:00
Alexandre Pujol
4c689dbad9
feat(profile): add gdm init profiles. 2023-11-27 19:25:34 +00:00
Alexandre Pujol
b8c2380da4
feat(profile): add epiphany providers. 2023-11-27 19:23:35 +00:00
Alexandre Pujol
52278490ab
feat(profile): general update. 2023-11-27 19:00:18 +00:00
Alexandre Pujol
319bea17c3
fix(full): fix pivot_root rule. 2023-11-27 18:56:39 +00:00
Alexandre Pujol
aa1553388b
feat(flatpak): add flatpak integration. 
- Add flatpak profile
- Add flatpak-bwrap subprofile: it manage the sandbox creation & has some larger access.
- Add flatpak-app, default profile for sandboxed app.

See Full system policy #252
 2023-11-26 23:19:09 +00:00
Alexandre Pujol
e41779f576
feat(full): add default bwrap profiles. 
On  full system policy, use the new bwrap profile (and bwrap-app) to confine sandboxed application.
It is not enabled by default as the sandbox profile is quite large.

Also integrate with the gnome app that use bwrap as sandbox manager.

Update other related profiles

See Full system policy #252
 2023-11-26 23:12:35 +00:00
Alexandre Pujol
3da0ad2572
feat(full): add bwrap-app abstraction. 2023-11-26 23:08:02 +00:00