token2/snapd
0
0
Fork 0
mirror of https://github.com/token2/snapd.git synced 2026-03-13 11:15:47 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
2.60.1
snapd/cmd
History
Michael Vogt 9a5fb8e4c4 many: stop using -O no-expr-simplify in apparmor_parser 
We recently ran into a real world profile bug where the option
`-O no-expr-simplify` causes a 10x increase in apparmor_parser
runtime and memory usage [1] that breaks existing customers.

The decision to use `-O no-expr-simplify` was taken in 2014 [2]
and the profiles back then where simpler. This commit will
make some profile generation slower but it will avoid going
into the exponential memory usage  when compiled with
`apparmor_parser -O no-expr-simplify`.

[1] https://bugs.launchpad.net/snapd/+bug/2025030
[2] https://bugs.launchpad.net/ubuntu-rtm/+source/apparmor/+bug/1383858
2023-06-28 08:54:07 +02:00
..
decode-mount-opts
libsnap-confine-private
cmd/snap-confine: review feedback
2023-03-08 12:11:00 +01:00
snap
cmd/snap/cmd_auto_import.go: read modeenv instead of kcmdline
2023-06-14 21:42:45 +02:00
snap-bootstrap
cmd/snap-bootstrap: make a unit test work on other architectures
2023-06-14 21:42:45 +02:00
snap-confine
snap-confine: add tmpfs mount rule to apparmor profile (#12845)
2023-06-05 16:18:47 +02:00
snap-device-helper
cmd/snap-device-helper: make sysroot static
2022-02-28 10:58:34 +01:00
snap-discard-ns
snap-exec
cmd/snap, cmd/snap-exec: use the helper from logger
2022-05-23 14:01:55 +02:00
snap-failure
many: replace use of "sanity" with more inclusive naming
2022-03-14 18:22:34 +01:00
snap-fde-keymgr
cmd/snap-fde-keymgr: stage and transition encryption keys
2022-06-09 15:34:39 +02:00
snap-gdb-shim
snap: add deprecation noticed to "snap run --gdb"
2021-02-08 09:50:44 +01:00
snap-mgmt
tests: make sure there are not any snapd service listed after removing snapd (#12811)
2023-05-15 18:29:44 -03:00
snap-preseed
cmd/snap-preseed: parse command line before verifying uid
2023-02-21 16:32:55 +01:00
snap-recovery-chooser
many: fix formatting w/ gofmt 1.19
2023-01-16 14:23:11 +01:00
snap-repair
refactor: replace IsNotFound usages for errors.Is(err, &NotFoundError{})
2023-02-09 16:02:40 +00:00
snap-seccomp
interfaces/seccomp/template: Adding kcmp to allow Mesa usecases
2023-05-29 11:22:42 +02:00
snap-seccomp-blacklist
snap-seccomp-blacklist: also disallow the use of ioctl + TIOCLINUX
2023-05-26 18:32:26 +02:00
snap-update-ns
golang: remove deadcode linter
2023-03-09 14:43:47 +01:00
snapctl
cmd: fix imports order (according to gci)
2021-06-15 10:25:05 +02:00
snapd
i/apparmor: move mocking of home and overlay conditions to osutil (#12270)
2022-11-07 12:26:15 +03:00
snapd-aa-prompt-listener
many: add stub services for prompting
2022-10-10 15:50:59 +02:00
snapd-aa-prompt-ui
many: add stub services for prompting
2022-10-10 15:50:59 +02:00
snapd-apparmor
many: stop using -O no-expr-simplify in apparmor_parser
2023-06-28 08:54:07 +02:00
snapd-env-generator
snapd-generator
cmd/snapd-generator: wrap an expresses in while with parentheses
2022-02-28 11:05:37 +01:00
snaplock
o/snapstate: pre-download and monitor snap for auto-refresh
2023-02-27 10:44:16 +01:00
system-shutdown
.clangd
cmd: Fixup .clangd to use correct syntax
2021-12-08 12:00:17 +10:30
.indent.pro
autogen.sh
many: replace some Validity with Precondition when appropriate (thanks to Samuele and Pawel)
2022-03-22 11:55:09 +01:00
configure.ac
snap: update vendored apparmor to 3.0.8 with userns and mqueue support (#12836)
2023-06-15 16:44:46 +02:00
Makefile.am
many: Reimplement snapd-apparmor in Go
2022-05-04 16:29:29 +09:30