mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-05 17:01:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
751 commits 23 branches 109 tags 32 MiB
Commit graph

751 commits

This branch
This branch
All branches
Author SHA1 Message Date
Andreas Gruenbacher
ece35dc8fe Add missing spaces and do not quote numbers 2007-06-06 09:09:37 +00:00
Andreas Gruenbacher
7c961abd52 Make this message more consistent with the rest. 2007-06-06 08:06:20 +00:00
Andreas Gruenbacher
205235e738 More cosmetic stuff. 2007-06-06 08:00:58 +00:00
Andreas Gruenbacher
b04e55469f More cosmetic stuff. 2007-06-06 07:29:58 +00:00
Andreas Gruenbacher
c2eb05298d Cosmetic change. 2007-06-06 07:23:59 +00:00
Seth Arnold
4e9c17ab6e Updates from Mathias Gug for ntpd 2007-06-05 19:47:53 +00:00
John Johansen
171dab27dc remove buffer and buffer2 from struct aa_audit 2007-06-05 17:58:16 +00:00
John Johansen
3f3c5ce968 have link report the permissions denied/granted 2007-06-05 17:57:47 +00:00
John Johansen
44c5f872da change audit messages to use name=<value> pairs 2007-06-05 17:56:50 +00:00
John Johansen
a89eed0360 remove name mangling 2007-06-05 17:56:14 +00:00
John Johansen
e1e05ccf97 fix logging of link target name 2007-06-05 17:55:41 +00:00
John Johansen
2ebbddaf4c use audit defines for reject, complain, audit, hint, status 2007-06-05 17:55:06 +00:00
John Johansen
1ded76679b Add patch to check perms/exec modifiers on profile load instead of checking them at run time 2007-06-05 17:54:11 +00:00
John Johansen
3669525062 refresh patches against latest kernel 2007-06-05 17:52:35 +00:00
Seth Arnold
d988a78f22 fixes to klogd from Mathias Gug 2007-06-01 21:18:50 +00:00
Seth Arnold
18d356e23d fixes to ntpd from Mathias Gug 2007-06-01 21:17:42 +00:00
Steve Beattie
9ee7d1041f Fix up some of the directories that should have been converted. 2007-05-31 05:58:22 +00:00
Steve Beattie
2493d03f93 This change was contributed by Mathias Gug <mathias.gug@ubuntu.com> 
This patch improves the information reported by then apparmor_status
script. It gives more detailed information about loaded profiles and
their mode, running processes and profiles applied to them.

(I slightly modified the code to refer to the term unconfined instead of
unstrained as well fixing some minor formatting issues.)
 2007-05-31 05:43:16 +00:00
Seth Arnold
42ec04076f Patch from Marius Tomaschewski for syslog-ng, which now uses pipe instead of file for writing to the console 2007-05-29 17:28:38 +00:00
Steve Beattie
a97558b1f7 fix formatting of description field in initscripts 2007-05-28 03:42:26 +00:00
Steve Beattie
65d3b94589 Bah, forgot to svn add the tunables file for /proc. 2007-05-25 20:24:11 +00:00
John Johansen
dac75a66bd refresh patches against latest git kernel 2007-05-25 17:04:33 +00:00
John Johansen
9f508f8c86 remove patches from series that shouldn't be there 2007-05-25 14:50:55 +00:00
Andreas Gruenbacher
4465abb29a Typo. 2007-05-25 12:47:34 +00:00
Andreas Gruenbacher
c77be398f7 Add first steps to cleaning up audit. 2007-05-25 12:35:47 +00:00
Steve Beattie
7e6e37953f This patch adds a variable definition for the location of /proc in 
tunables/proc and modifies all users of /proc to use the variable instead.

I also converted some uses of /proc/*/ to /proc/[0-9]*/ to be a
little more restrictive, as well as removing some references to proc
files that are already covered by abstractions/base (the removals in
abstractions/bash seem justified as all uses of abstractions/bash are
immediately preceded by abstractions/base).
 2007-05-25 02:09:30 +00:00
Steve Beattie
f442a50a4d convert a malloc/strcpy to just a straight strdup(). 2007-05-24 22:07:39 +00:00
Steve Beattie
c2d927e710 Fix return code propogation in the initscripts, and return the 
correct return code in the try-restart case properly when apparmor is
not loaded.
 2007-05-24 05:00:34 +00:00
Steve Beattie
703cad6072 Fix apparmor_status to report unconfined processes properly on the new 
lkml submission code and document possible return codes in the
apparmor_status manpage.
 2007-05-24 04:59:06 +00:00
John Johansen
ae94aaec9e - update apparmor-audit.diff to change comment reserving 1500-1599 from 
LSPP to AppArmor.  And add to patch comment explaining the change.
- refresh patches against latest git
 2007-05-23 16:39:31 +00:00
Seth Arnold
9e39e751c5 Bug 265775 - changes for kerberosclient profile 2007-05-22 21:16:48 +00:00
Dominic Reynolds
e0e441ac72 - Minor formatting 
- use ENV{PAGER}
- chmod use changes to prevent races writing config files
- add preferred user (NOVELL) as config option in logprof.conf and sort
  profiles from repo so that preferred user is the default and first in
  the list
 2007-05-22 20:49:51 +00:00
Dominic Reynolds
3cf5c49c3a Missing include file needed for the repository code. 2007-05-22 12:30:08 +00:00
Dominic Reynolds
c7fbd14641 Changes to work with tomcat5.5: changed apis to the logging framework 
and request pipeline.
 2007-05-21 20:39:41 +00:00
Dominic Reynolds
74b2bfae95 Add directory for tomcat_5_5 plugin (used in openSUSE 10.3) 2007-05-21 19:58:58 +00:00
Seth Arnold
592b23f523 Bug 267933 - audit message about /var/lib/ntp/drift/ntp.drift.TEMP 2007-05-16 22:47:40 +00:00
Seth Arnold
1915836d6e remove a lot of the Ux rules we inherited from our fevered attempt to provide profiles for everything in NLD9. Some of the programs may not be functional as a result -- evolution's Ux on sendmail comes to mind -- but these profiles are all really bitrotten. 2007-05-16 20:55:13 +00:00
Seth Arnold
6d7cd99d03 Ralf has added the openldap profile to the openldap package 2007-05-16 19:19:03 +00:00
Seth Arnold
c56f72e512 Uwe has added the named profile to the bind package 2007-05-16 19:09:58 +00:00
Seth Arnold
2e9a82868f Grand profile repository re-organization. Move directories around to 
make the final install layout match the layout in the repository (at
long last :) -- now we can use a single 'make check' target to check the
profiles in the repository against both apparmor_parser and logprof.
 2007-05-16 18:51:46 +00:00
Steve Beattie
42acd17489 Quiet techdoc build output when not building in verbose mode. 2007-05-15 20:02:15 +00:00
Steve Beattie
02528b7281 Ugh, how did I mess up the changelog entry like that? Sigh. 2007-05-15 19:36:49 +00:00
John Johansen
c1e9893e4a actually refresh the patch this time - update explanation of why the lockdep irq inversion is false. NOTE: it would be correct on SMP systems if the kernel could take a dead tasks lock. 2007-05-14 07:00:57 +00:00
John Johansen
ac05361294 update explanation of why the lockdep irq inversion is false. NOTE: it would be correct on SMP systems if the kernel could take a dead tasks lock. 2007-05-14 06:59:11 +00:00
Andreas Gruenbacher
760dc14a12 This shoul dbe slightly cleaner 2007-05-13 05:05:59 +00:00
John Johansen
2d1a5cb38e Add short descriptions to patch headers. 2007-05-13 04:12:26 +00:00
John Johansen
afc5cd418f restore patch headers that got stripped when patches where merged 2007-05-13 03:59:25 +00:00
John Johansen
a8bb3dcff4 add header to apparmor-locking-2.diff 2007-05-12 22:13:13 +00:00
John Johansen
5ec8f8d16a merge lockdep patching into a single locking patch to make it easier to 
review as a single entity.
 2007-05-12 22:01:04 +00:00
Andreas Gruenbacher
8e3e7cdac9 Comment cleanups. Reorder and reenable the NOT YET patches that would make sense to push out, and clean them up a little. 2007-05-12 21:50:15 +00:00