mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-09 10:51:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
646 commits 23 branches 109 tags 33 MiB
Commit graph

646 commits

This branch
This branch
All branches
Author SHA1 Message Date
Andreas Gruenbacher
504721f4f4 Add rcu-task-context-2.diff and no-inline-aa_change_task_context.diff. 2007-03-22 09:38:56 +00:00
Andreas Gruenbacher
c377d49bf9 Add comment 2007-03-22 08:20:24 +00:00
Matt Barringer
371f984e09 Initial checkin of the netdomain test suite. It requires 
dejagnu (which, in turn, requires tcl).
 2007-03-21 22:27:37 +00:00
John Johansen
f6244becd4 use rcu for aa_task_context 2007-03-21 22:21:13 +00:00
Jesse Michael
fd5aa90427 remove last vestiges of Immunix::Ycp from yast2-apparmor 2007-03-21 16:53:41 +00:00
Jesse Michael
360ffc756e re-enable warnings for the utils perl modules and fix a couple initial 
problems exposed by that.  there are likely to be more fixes coming.
 2007-03-21 16:49:39 +00:00
Jesse Michael
e5ac6de656 fix typo in fork tracking code that could result in applications that 
are currently running while logprof/genprof is used being left in the 
null-complain profile instead of being moved to the profile the user
has just specified.  

the profiles are updated correctly though, so if the application is 
stopped and restarted, it will be confined by the appropriate profile.
 2007-03-21 15:54:57 +00:00
Steve Beattie
5ec36e6c2b I cretanily maek lost fo tyops, smoetimes. 2007-03-21 02:01:49 +00:00
Seth Arnold
263843da4b typo fix; usernmae --> username 2007-03-20 22:04:21 +00:00
Jesse Michael
d8ae032328 used perltidy to clean up the formatting for the perl scripts in the 
utils package and manually fixed some places where perltidy's
reformatting made it harder to read.  the options used were--

-i=4    # 4-space indentation
-l=0    # unlimited line length (for now)
-pt=2   # slightly tightened parens
-ce     # cuddled elses
-nolq   # don't outdent long quotes
-nsfs   # don't add spaces in front of semi-colons in for ( ) statements
-isbc   # only indent block comments that have whitespace in front of them
-otr    # don't place a break between a comma and an opening brace

the code will be refactored to make it possible to switch to using 
80-column line-breaks without resorting to really nasty formatting 
constructs.
 2007-03-20 21:58:38 +00:00
Andreas Gruenbacher
f29097e401 Improved version of the last format string fix 2007-03-20 17:41:36 +00:00
Andreas Gruenbacher
fb62f5c553 Replace force_dir_on_negative_dentry.diff with rename-file-type.diff 2007-03-20 17:39:51 +00:00
Andreas Gruenbacher
d1e9b24234 Drop obsolete audit-unterminated-string.diff, and add apparmor_getprocattr.diff. 2007-03-20 16:10:56 +00:00
Andreas Gruenbacher
96f896c193 Fix warning 2007-03-20 15:56:50 +00:00
John Johansen
78ba031fc7 Add basic script used to convert module/apparmor into kernel patch snapshot 2007-03-19 11:13:05 +00:00
John Johansen
6f03656049 Add brief readme used to explain layout of kernel-patches snapshots 2007-03-19 11:11:05 +00:00
John Johansen
31b181fcf8 update namespace semaphore patch for changes in 2.6.20 2007-03-19 11:10:01 +00:00
John Johansen
9aae261afd remove temporary development branches of the parser 2007-03-19 07:19:04 +00:00
Jesse Michael
7780d79c8d remove last vestiges of Immunix::Ycp in deference to official ycp module 2007-03-19 02:29:47 +00:00
Jesse Michael
c878e09840 fixes for bz #179656 - missing localization in subdomain.pm 2007-03-18 20:25:25 +00:00
Jesse Michael
5b2dd25bb1 revert broken commit. i'll check in the discrete fixes from the last checkin 
in a second and then follow those up with the corrected cleanup fixes.
 2007-03-18 19:44:57 +00:00
John Johansen
5643deb42e patch to make dfa table numbers match flex table numbers 2007-03-15 22:26:45 +00:00
Steve Beattie
5fe5803aa7 Fix a couple of warnings in the recent trailing slash commit. 2007-03-14 22:35:55 +00:00
John Johansen
e5cced8ba0 change dfa table entry numbering to match flex 2007-03-14 22:02:50 +00:00
John Johansen
ef7a0adff8 change dfa table numbering to match flex 2007-03-14 22:01:16 +00:00
John Johansen
51b25bd3e5 Handle differentation of directories and files via / for the dfa engine. 
This causes the dfa engine to not strip trailing /
and to handle /*/ /**/ and /* and /** cases specially so that directories
don't get matched unintentionally

aare       pcre
/foo/* -> /foo/[^/][^/]*	so the dir /foo/ will not match the rule
/foo/** -> /foo/[^/].*
/*/foo -> /[^/][^/]*/foo	so the rule won't match //foo
/**/foo -> /[^/].*/foo

rules that contain more than a * or ** between dir / elements do not
get converted, ie.

/foo*
/foo**
/foo*/
/foo**/
/*foo
/**foo
/*foo/
/**foo/

there is a known case where this patch is incomplete.  When there
exists an alternation that can be empty and * or ** ie.
/{foo,}*
/{foo,*}
 2007-03-14 22:00:39 +00:00
Steve Beattie
a39a3b0410 Add tests to openat to test what names apparmor sees when a rename 
occurs between the open(dir) and openat(file) calls.
 2007-03-14 19:53:10 +00:00
Steve Beattie
94d4ac649e Fixup the openat.sh test as well. 2007-03-13 22:10:45 +00:00
John Johansen
e102bd2651 fixes to issues that came up in updating the regression tests 2007-03-13 21:44:05 +00:00
Steve Beattie
063bb1b26e Fix up some of the patches after I messed them up by incorporating some of their changes. 2007-03-13 18:27:21 +00:00
Jesse Michael
1de5bdbacc fix missing include to silence compiler warnings 2007-03-13 16:52:28 +00:00
Jesse Michael
505155a48e use the appropriate pam_modutil_* wrapper functions if possible 2007-03-13 16:29:03 +00:00
Steve Beattie
30a2252adf Add some basic tests for openat(). Need to add tests that delete the 
opened directory before the openat() call occurs.
 2007-03-13 11:57:36 +00:00
Steve Beattie
3f32351793 Misc cleanups. 2007-03-13 11:32:04 +00:00
Jesse Michael
c0b7fc812d add minor cleanup to match up with recommendations from the kernel 
CodingStyle documentation
 2007-03-12 18:39:53 +00:00
Dominic Reynolds
8fb0f8f3d1 Fixes for BZ 179656, 233768. Add new capabilities rating to sverity.db, 
localization fixes in SubDomain.pm and Reports.pm.
 2007-03-12 14:12:40 +00:00
Steve Beattie
7b391f3d5c Add a testcase to verify when clone() is allowed. 2007-03-08 23:40:10 +00:00
Steve Beattie
b0733fb3a4 Based on a patch from jjohansen@suse.de, does s/constrained/confined/ in 
comments and descriptions. A later patch will fix it for the few
testcases that actually check the value in /proc/pid/attr/current.
 2007-03-08 21:23:17 +00:00
Steve Beattie
19235e440a Patch by jjohansen@suse.de: fix the syscall_chroot test to work even 
when chroot pathnames are reported against the namespace root instead of
the chroot root.
 2007-03-08 21:00:12 +00:00
John Johansen
b787d8ac21 Patches against test suite to match the for-mainline branch 2007-03-08 17:15:12 +00:00
Steve Beattie
23f05801f6 Add testcases for fchmod/fchown and clean up some formatting in the 
original chmod/chown tests.
 2007-03-08 00:09:47 +00:00
Steve Beattie
ad542aba23 Add a test for cap net_bind_service w/tcp. Alas, this test is still 
disabled.
 2007-03-07 18:54:28 +00:00
Steve Beattie
beac286a5c Run fork.c through lindent. 2007-03-06 20:13:31 +00:00
Andreas Gruenbacher
0c7f8233e8 Rename mount-consistent-d_cache.diff to mount-consistent-d_path.diff. 2007-03-01 21:18:35 +00:00
Andreas Gruenbacher
7df0fde677 Add proposal for unlink permission checking. 2007-03-01 06:16:18 +00:00
Andreas Gruenbacher
da080ef1a4 Add parentheses. 2007-03-01 06:06:51 +00:00
Andreas Gruenbacher
76e0141e21 Fix link-subset-check.diff and add more rigid link-subset-check-2.diff variant for discussion. 2007-03-01 05:02:27 +00:00
Andreas Gruenbacher
584a4a2bbd Make the computation of exec_mode more obvious. 2007-03-01 04:15:51 +00:00
Steve Beattie
065b7bf660 Add a couple of testcases to the hardlink test. 2007-02-28 17:39:53 +00:00
Andreas Gruenbacher
c20016faf5 Make nfsd compile again after file-handle-ops-2.diff. 2007-02-27 23:47:47 +00:00