mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/utils/aa-cleanprof.pod

43 lines
1 KiB
Text
Raw Permalink Normal View History

Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=pod
=head1 NAME
aa-cleanprof - clean an existing AppArmor security profile.
=head1 SYNOPSIS
Add --no-reload to various utils manpages This option exists in several aa-* tools since 2.9, but isn't mentioned in the manpage. Also drop some trailing whitespace in the manpages. Acked-by: John Johansen <john.johansen@canonical.com> for 2.9, 2.10, 2.11 and trunk.
2017-07-23 21:29:53 +02:00
B<aa-cleanprof I<E<lt>executableE<gt>> [I<E<lt>executableE<gt>> ...] [I<-d /path/to/profiles>] [I<--no-reload]> [I<-s>]>
Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=head1 OPTIONS
B<-d --dir /path/to/profiles>
Specifies where to look for the AppArmor security profile set.
Defaults to /etc/apparmor.d.
manpages: incorporate podchecker; fix errors and (most) warnings This patch adds a 'check_pod_files' make target to the common make rules, and then fixes the errors it highlighted as well as most of the warnings. It will cause 'make check' in most of the directories to fail if there are errors in a pod file (but not if there are warnings). Common issues were: - using an '=over/=back' pair for code-like snippets that did not contain any =items therein; the =over keyword is intended for indenting lists of =item entries, and generates a warning if there isn't any. - not escaping '<' or '>' - blank lines that contained spaces or tabs The second -warnings flag passed to podchecker is to add additional warnings, un-escaped '<' and '>' being of them. I did not fix all of the warnings in apparmor.d.pod, as I have not come up with a good warning-free way to express the BNF of the language similar in format to what is currently generated. The existing libapparmor warnings (complaints about duplicate =item definition names) are actually a result of passing the second -warnings flag. The integration into libapparmor is suboptimal due to automake's expectation that there will be a test driver program(s) for make check targets; that's why I added the podchecker call to the manpage generation point. Signed-off-by: Steve Beattie <steve@nxnw.org> Acked-by: Seth Arnold <seth.arnold@canonical.com> --- changehat/mod_apparmor/Makefile | 3 changehat/mod_apparmor/mod_apparmor.pod | 28 ++- common/Make.rules | 4 libraries/libapparmor/doc/Makefile.am | 7 parser/Makefile | 2 parser/apparmor.d.pod | 275 +++++++++++++------------------- utils/Makefile | 3 utils/aa-cleanprof.pod | 2 utils/aa-complain.pod | 2 utils/aa-decode.pod | 2 utils/aa-easyprof.pod | 69 +++----- utils/aa-enforce.pod | 2 utils/aa-genprof.pod | 2 utils/aa-logprof.pod | 6 utils/aa-sandbox.pod | 64 ++----- utils/logprof.conf.pod | 2 utils/vim/Makefile | 2 17 files changed, 212 insertions(+), 263 deletions(-)
2014-09-15 11:30:47 -07:00
Add --no-reload to various utils manpages This option exists in several aa-* tools since 2.9, but isn't mentioned in the manpage. Also drop some trailing whitespace in the manpages. Acked-by: John Johansen <john.johansen@canonical.com> for 2.9, 2.10, 2.11 and trunk.
2017-07-23 21:29:53 +02:00
B<--no-reload>
Do not reload the profile after modifying it.
So that closes the first proper version of aa-cleanprof with testcases added, fixed profile writer to work on multiple profiles at once, please use the view clean changes option in logprof and genprof, the comment preserver version needs tweaking that version wont be written anyways. Plus a few other changes
2013-09-22 15:01:34 +05:30
B<-s --silent>
Fixes from rev70..72
2013-09-22 23:49:19 +05:30
Silently overwrites the profile without user prompt.
Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=head1 DESCRIPTION
B<aa-cleanprof> is used to perform a cleanup on one or more profiles.
Add --no-reload to various utils manpages This option exists in several aa-* tools since 2.9, but isn't mentioned in the manpage. Also drop some trailing whitespace in the manpages. Acked-by: John Johansen <john.johansen@canonical.com> for 2.9, 2.10, 2.11 and trunk.
2017-07-23 21:29:53 +02:00
The tool removes any existing superfluous rules (rules that are covered
fixes from rev65
2013-09-21 01:08:34 +05:30
under an include or another rule), reorders the rules to group similar rules
So that closes the first proper version of aa-cleanprof with testcases added, fixed profile writer to work on multiple profiles at once, please use the view clean changes option in logprof and genprof, the comment preserver version needs tweaking that version wont be written anyways. Plus a few other changes
2013-09-22 15:01:34 +05:30
together and removes all comments from the file.
Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=head1 BUGS
If you find any bugs, please report them at
rev 63-64, fixes man pages, messages
2013-09-20 19:20:41 +05:30
L<https://bugs.launchpad.net/apparmor/+filebug>.
Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=head1 SEE ALSO
apparmor(7), apparmor.d(5), aa-enforce(1), aa-complain(1), aa-disable(1),
all: Use HTTPS links for apparmor.net Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
2018-09-13 16:28:22 +00:00
aa_change_hat(2), and L<https://wiki.apparmor.net>.
Added manpages for the tools, fixes from rev 59..62, some fixes from rev 58
2013-09-19 10:32:19 +05:30
=cut
Reference in a new issue Copy permalink