apparmor.d

Author	SHA1	Message	Date
Alexandre Pujol	ff849b9f09	feat(profile): general update.	2024-03-05 18:00:36 +00:00
Alexandre Pujol	70963a50b6	feat(profile): start implementing systemctl subprofile instead of using child-systemctl.	2024-03-05 17:45:02 +00:00
Alexandre Pujol	a7e37528d5	feat(profile): update some browser based profiles.	2024-03-05 17:39:36 +00:00
Alexandre Pujol	bc69b193ea	feat(abs): minor update to abs definitions.	2024-03-05 17:37:38 +00:00
Alexandre Pujol	c66d3bf9f4	feat(profile): general update.	2024-03-05 16:58:16 +00:00
Alexandre Pujol	faa40c8cde	feat(fsp): cleanup main systemd profiles.	2024-03-05 16:53:34 +00:00
Alexandre Pujol	62f1f7df6e	feat(fsp): allow signal from system-user for some user app.	2024-03-05 00:25:39 +00:00
Alexandre Pujol	3c77da8f7d	feat(fsp): improve the systemd profiles.	2024-03-05 00:20:05 +00:00
Alexandre Pujol	c80449719e	feat(fsp): rewrite mount rules for systemd.	2024-03-05 00:18:40 +00:00
Alexandre Pujol	1699260a87	fear(fsp): expand systemd-service for more services.	2024-03-05 00:16:24 +00:00
Alexandre Pujol	89cd3d023b	fix: entrypoint for systemd-cryptsetup.	2024-03-04 23:27:21 +00:00
Alexandre Pujol	8ea0964724	feat(fsp): restrict @{run} for systemd.	2024-03-04 22:02:43 +00:00
Alexandre Pujol	532162f302	feat(abs): improve mount rule for bwrap.	2024-03-04 12:55:32 +00:00
Alexandre Pujol	f1b01d03cd	feat(profile): add gnome-desktop-thumbnailers.	2024-03-04 12:54:39 +00:00
Alexandre Pujol	0533e03756	feat(abs): add some dbus access to bwrap-app. See #302	2024-03-03 23:15:19 +00:00
Alexandre Pujol	b91cf4da41	feat(abs): cleanup bwrap mount rule as it is not maintainable to restrict more.	2024-03-03 23:11:27 +00:00
Alexandre Pujol	0ffa51aca4	feat(abs): rewrite bwrap mount rules.	2024-03-03 12:08:30 +00:00
Alexandre Pujol	af0c87f712	feat(abs): add the initial version of the systemctl abstraction.	2024-03-03 12:03:16 +00:00
Alexandre Pujol	7e8f854b16	feat(abs): deny apparmor/.null in the base abstraction.	2024-03-03 11:51:39 +00:00
Jeroen Rijken	ba6172bb8c	Review points Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	346285720d	Small updates Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	0332c9cb1b	Git SSH agent Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	a2a149e0b7	New abstraction uim Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	f807d5a190	Deduplicate and revert Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	13079bbd7e	name to label Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	23fa2b36ab	Remove curly brackets Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	af4038867a	Syntax fixes Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	04cf3d3850	Various fixes Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	c177ca09ed	Typo Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	b0655e9993	Fixes and profile updates Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Jeroen Rijken	b532dd6827	Update various profiles Signed-off-by: Jeroen Rijken <jeroen.rijken@xs4all.nl>	2024-03-02 16:05:34 +00:00
Alexandre Pujol	92a1d9f65f	feat(profile): general update.	2024-03-01 22:35:49 +00:00
Alexandre Pujol	06abeac2ee	feat(profile): general update.	2024-02-29 21:45:42 +00:00
Alexandre Pujol	cd09dc7688	feat(abs): update dbus absractions.	2024-02-29 21:38:49 +00:00
Alexandre Pujol	f76051f114	feat(profile): add some unix rules with local address.	2024-02-29 21:15:59 +00:00
Alexandre Pujol	956c282794	feat(abs): add apps to the launcher-user abs.	2024-02-29 21:06:32 +00:00
Alexandre Pujol	ffb189ef65	feat(profile): general update.	2024-02-29 00:32:40 +00:00
Alexandre Pujol	1f3b812cfb	feat(profile): add the loupe profile.	2024-02-28 23:52:57 +00:00
Alexandre Pujol	cda8f30c29	feat(profile): start using the new bwrap abs.	2024-02-28 23:52:15 +00:00
Alexandre Pujol	cbbb2b4a3e	fix(profile): better libdir for snap based profiles.	2024-02-28 23:47:47 +00:00
Alexandre Pujol	741980f8ab	feat(abs): use @{pci} in pci path.	2024-02-28 23:32:34 +00:00
Alexandre Pujol	431e93c9df	feat(abs): update bwrap minimal requirments.	2024-02-28 17:17:51 +00:00
Alexandre Pujol	555b5e3c3f	feat(profile): general update.	2024-02-28 17:17:20 +00:00
Alexandre Pujol	d187514fd3	feat(profile): add new userns rule.	2024-02-28 15:39:18 +00:00
Alexandre Pujol	175d243c54	refractor: rename element -> element-desktop.	2024-02-28 15:37:52 +00:00
Alexandre Pujol	00051bd2f0	feat(profiles): continue replacing [0-9]* by @{int}.	2024-02-26 21:10:53 +00:00
Alexandre Pujol	99e4c4622d	feat(abs): add initial version of the bwrap abs. - To be used by profile that runs bwrap directly. - Needs more rule when used alongside flatpak	2024-02-24 18:41:36 +00:00
Alexandre Pujol	7bd500b979	Merge branch 'main' of github.com:roddhjav/apparmor.d * 'main' of github.com:roddhjav/apparmor.d: Add Profiles for imv and zathura (#291)	2024-02-23 22:50:34 +00:00
Alexandre Pujol	9bd21e9361	fix(profile): add bluetooth network to dbus-broker.	2024-02-23 22:35:10 +00:00
valoq	df455f93eb	Add Profiles for imv and zathura (#291 ) * add profiles * fix minor issues * fix read permissions * remove leftover line	2024-02-23 20:48:24 +00:00

... 3 4 5 6 7 ...

1656 commits