apparmor.d

Author	SHA1	Message	Date
Alexandre Pujol	e6939f4968	feat(profile): add pgrep.	2025-07-07 00:37:07 +02:00
Alexandre Pujol	c85ed58fa9	feat(profile): add vmstat	2025-07-07 00:30:21 +02:00
Alexandre Pujol	771dd9b589	feat(profile): add pidof	2025-07-07 00:22:26 +02:00
Alexandre Pujol	6b5fad404b	feat(profile): add free	2025-07-07 00:19:35 +02:00
Alexandre Pujol	8042dd4a34	chore: replace make full by make fsp.	2025-07-07 00:09:34 +02:00
Alexandre Pujol	c2740ffe24	feat(profile): xwayland: add integration with desktop local paths.	2025-07-06 22:15:04 +02:00
Alexandre Pujol	af8c66e9bf	feat(profile): upgrade cockpit profiles.	2025-07-06 22:14:25 +02:00
Alexandre Pujol	bfc6c51821	feat(profile): update some core system profiles.	2025-07-06 22:08:28 +02:00
Alexandre Pujol	705eb11510	feat(profile): improve some dbus rules.	2025-07-06 22:04:18 +02:00
Alexandre Pujol	4f2abda92f	feat(profile): improve gnome programs.	2025-07-06 21:58:20 +02:00
Alexandre Pujol	f56163afb1	feat(profile): ensure xdg portal can start any sandboxing tool.	2025-07-06 21:56:24 +02:00
Alexandre Pujol	3b040aa5ca	feat(profile): improve dpkg-scripts.	2025-07-06 21:54:49 +02:00
Alexandre Pujol	13680be0a6	feat(fsp): sdu: add consoles	2025-07-06 21:53:53 +02:00
Alexandre Pujol	223f611dfc	feat(abs): nvidia: ensure cuda is supported, cleanup common local path.	2025-07-06 21:53:15 +02:00
Alexandre Pujol	e5b6d5dd19	feat(profile): update nvidia tools.	2025-07-06 15:21:50 +02:00
Alexandre Pujol	f47babab84	fix(profile): pci slot adress.	2025-07-06 15:21:01 +02:00
Alexandre Pujol	9cb74ff384	feat(abs): general update	2025-07-02 23:22:12 +02:00
Alexandre Pujol	0366543c39	feat(profile): add console-setup profiles.	2025-06-21 21:09:37 +02:00
Alexandre Pujol	1aee62f52c	feat(abs): mappings: add support for role from the sshd-session profile.	2025-06-21 21:07:02 +02:00
Alexandre Pujol	f443c71c7b	tests: allow empty abstractions directory.	2025-06-21 21:05:53 +02:00
Alexandre Pujol	43278aeda2	feat(profile): rewrite the profile for hw-probe.	2025-06-21 20:36:52 +02:00
Alexandre Pujol	4d201ea417	feat(profile): add lsb-release Use it instead of lsb_release.	2025-06-21 20:35:38 +02:00
Alexandre Pujol	0572688c59	feat(profile): small general upgrade.	2025-06-21 20:27:06 +02:00
Alexandre Pujol	f8250f7e0c	feat(profile): move kmod in subprofile.	2025-06-21 20:22:25 +02:00
Alexandre Pujol	e222816d32	feat(profile): virt: move privileged actions to subprofle.	2025-06-21 20:08:44 +02:00
Alexandre Pujol	24a9da865f	chore: update sbin.list	2025-06-21 20:05:47 +02:00
Alexandre Pujol	0483f476ed	fix(profile): aa-enforce: ensure looking path in sbin is allowed.	2025-06-21 19:56:54 +02:00
Alexandre Pujol	6735b8e5f8	feat(profile): zram: move kmod to its own subprofile.	2025-06-21 19:55:22 +02:00
Alexandre Pujol	226cb23073	feat(profile): small improvement to steam.	2025-06-21 19:53:26 +02:00
Alexandre Pujol	03d7ef5589	feat(profile): add profile for sshd session. It is only a first draft as recent update in sshd, split sshd in multiple binaries, it will allow us to also split the confinement in multiple profile.	2025-06-21 19:52:22 +02:00
Alexandre Pujol	5eb08f8de5	feat(profile): improve pacman profiles.	2025-06-21 19:47:49 +02:00
Alexandre Pujol	cd619d280a	feat(profile): update apt profiles.	2025-06-21 19:44:43 +02:00
Alexandre Pujol	ea45cec24d	feat(fsp): improve fsp profiles.	2025-06-21 19:43:02 +02:00
Alexandre Pujol	bb6ca01718	feat(profile): ufw: integrate ufw-init in ufw, use sysctl in subprofile.	2025-06-21 19:36:23 +02:00
Alexandre Pujol	3ffff07f3f	tests: enforce abstractions test.	2025-06-20 00:00:48 +02:00
Alexandre Pujol	f29041576e	feat(profile): move away from old or too wide abstractions.	2025-06-19 23:55:20 +02:00
Alexandre Pujol	033a7475e0	tests: enforce equivalent tests.	2025-06-19 23:35:13 +02:00
Alexandre Pujol	27907e5a17	feat(profiles): ensure we use {m,g,}awk instead of awk.	2025-06-19 23:27:34 +02:00
Alexandre Pujol	be62e5186f	feat(profiles): ensure we use which{,.debianutils} instead of which.	2025-06-19 23:16:16 +02:00
Alexandre Pujol	d2dbf771cc	feat(profiles): ensure we use {,e}grep instead of grep.	2025-06-19 23:07:17 +02:00
Alexandre Pujol	0e4cc45a5b	tests: simplify sbin check.	2025-06-19 20:03:53 +02:00
Alexandre Pujol	e7f25571d0	chore(profile): rename netplan.script to netplan.	2025-06-17 00:22:34 +02:00
Alexandre Pujol	0478e62f56	feat(fsp): sd/sdu: improve integration with stacked profiles.	2025-06-17 00:19:43 +02:00
Alexandre Pujol	fc45e5ee66	feat(fsp): add initial sd-umount.	2025-06-17 00:18:39 +02:00
Alexandre Pujol	d01b7ce7d6	chore: cleanup linter issue.	2025-06-16 23:42:30 +02:00
Alexandre Pujol	390a8b1b01	build: add the fsp-debug build command.	2025-06-16 23:20:03 +02:00
Alexandre Pujol	1118d2ffc5	build: use the base-strict abstraction automatically.	2025-06-16 23:17:45 +02:00
Alexandre Pujol	7dd860f277	feat(profile): minor update & cosmetic.	2025-06-16 23:15:07 +02:00
Alexandre Pujol	eeebcf91f3	feat(abs): add base-strict. For now, it is only a restructuring of the base abstraction with awareness of the apparmor.d architecture.	2025-06-16 23:05:50 +02:00
Alexandre Pujol	34f9a53a3b	ci: start dropping ci tests on ubuntu 22.04.	2025-06-16 22:53:36 +02:00

1 2 3 4 5 ...

3626 commits