around carat symbols and commas in file rules, and basic permission
modes first testcases from jjohansen@suse.de.
Acked-By: Steve Beattie <steve@nxnw.org>
<mathiaz@ubuntu.com> [Message-ID: <20070813201254.GD11381@mathias.mathiaz.net>]
Added comments to both file-skipping locations referencing the other
location that needs to be modified.
(The ideal solution would be for this information to be stored in one
commonly referenced location, configurable by distributors and
administratrors.)
Turkish has 4 letter "I"s. English has only two, a lowercase dotted i and an
uppercase dotless I. Turkish has lowercase and uppercase forms of both dotted
and dotless I. So tolower(I) != i and toupper(i) != I for us.
Althought this situation is not a apparmor bug (sed can't convert these
properly) its directly affected. But these must locale independent. So
please apply following simple patch to solve this issue.
Acked-By: Steve Beattie <sbeattie@suse.de>
Acked-By: Steve Beattie <sbeattie@suse.de>
Support placing the permission modes first before the pathname. This
makes things somewhat more consistent with other types of permissions
(capability [specific_cap], network [stuff], etc.).
Pull in conversion to texlive-latex from openSUSE
Mark manpages as documentation (I didn't know files outside of
/usr/share/doc/packages/%{name}-%{version} could be marked as such).
apparmor-parser. The html version of the parser manpages as well as pdf,
html, and text versions of the techdoc are included in the -docs
package.
Disabled a regression stress test that is a bit problematic on 64bit
arches; the stress test itself is a bit absurd given how many rules it
generates.
This patch converts some of the internal references from subdomain to
apparmor (and s/sd/aa/ as well). Variables referenced in
/etc/apparmor/subdomain.conf (which also needs to be renamed) are not
renamed.
[This is a slight update to a patch originally by jjohansen@suse.de]
The ability of the rcapparmor initscript to rebuild the apparmor module
if attmepts to load the module failed had been broken for a while; this
patch rips out the option altogether. The ability to drop to runlevel
1 if the apparmor module can't be loaded is still available, if not
recently tested.
This patch, based on prior versions by jjohansen@suse.de, reworks the
rcapparmor initscript to support apparmor as a kernel builtin, instead
of just a module.
In the recent fixups for Ubuntu/Debian, .dpkg-new files got added to the
set of profile names that get ignored. Alas, that only got added in one
of two locations in the initscript; this patch fixes that by making a
common test function that both locations use.
Move the apparmor.d(5), apparmor(7), apparmor_parser(8),
subdomain.conf(5) and apparmor.vim(5) (for lack of a better location)
into the apparmor-parser package.
