mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
511 commits 23 branches 109 tags 32 MiB
Commit graph

511 commits

This branch
This branch
All branches
Author SHA1 Message Date
Steve Beattie
9ef2941687 Subject: Move make targets from docs/ to common/Make.rules 
This patch moves the make rules used to generate man pages and their
html counterparts from the docs package to the common/ directory, so
that all packages can make use of them. It also makes the immunix.css
stylesheet available via the common/ dir, renaming it to apparmor.css.
 2007-04-03 18:51:56 +00:00
Andreas Gruenbacher
41bd5154e6 Add some more minor cleanups. 2007-04-03 16:48:07 +00:00
Andreas Gruenbacher
cd1eaa88a0 Add DFA table format README. 2007-04-03 13:53:24 +00:00
Andreas Gruenbacher
d622b621f1 security/Makefile: slightly cleaner version 2007-04-03 13:39:05 +00:00
Andreas Gruenbacher
368d9999ca Remove AA_LINK_X_MODIFIERS again. 2007-04-03 13:26:33 +00:00
Andreas Gruenbacher
72fba9803d Move to d_path fix backport from -mm tree (which is where our patch was merged). 2007-04-03 12:04:05 +00:00
Andreas Gruenbacher
026eb0b136 More logical patch order 2007-04-03 10:04:39 +00:00
Andreas Gruenbacher
0a12813bd8 Add comment 2007-04-03 09:33:34 +00:00
John Johansen
b5f18f5177 merge down patches to single apparmor.diff 2007-04-03 07:50:09 +00:00
Andreas Gruenbacher
8487f24e33 Inline function cleanup 2007-03-31 17:23:39 +00:00
Andreas Gruenbacher
ea49ba7712 Add setprocattr cleanup 2007-03-31 16:42:04 +00:00
Andreas Gruenbacher
4f7c1ecdfc Make sure we have at least one enabled profile; this looks as if it should work. 2007-03-30 22:45:28 +00:00
Andreas Gruenbacher
004af43f9f Bumt the version to 2.0.2. Move active/ profiles to extra/ pending review and regeneration with the latest syntax. 2007-03-30 22:32:48 +00:00
Andreas Gruenbacher
dacc176aca Add in reintroduce-interface-lock.diff which slipped through 2007-03-30 22:15:49 +00:00
Andreas Gruenbacher
f28840dff2 Fold all the apparmor patches together. Some line offsets in other patches. 2007-03-30 21:25:45 +00:00
Andreas Gruenbacher
152bc78d8b Line offset rediff only 2007-03-30 20:52:27 +00:00
Andreas Gruenbacher
b9057fd0bc Remove obsolete definition. 2007-03-30 20:39:11 +00:00
Andreas Gruenbacher
b379c2dcc3 Introduce reference counting for syntax tree nodes. Use that to share AcceptNodes, and split the bits in AcceptNodes to minimize the number of states. 2007-03-30 20:38:51 +00:00
Steve Beattie
b547067e8d This patch fixes the parser to do duplicate rule elimination after 
variable expansion occurs, not before.
 2007-03-30 18:34:37 +00:00
John Johansen
9d6cd4ffa8 make dfa the default output mode 2007-03-30 17:32:00 +00:00
Steve Beattie
abe841d7c4 Add an 'all' target for the pcre subdir. 2007-03-30 16:30:15 +00:00
Steve Beattie
7a4b823826 Always traverse subdirs to determine whether things need to be rebuilt 
or not.
 2007-03-30 16:26:50 +00:00
Jesse Michael
bef39bbff8 Add an empty install-debian: target to keep the makefile from blowing up 
when running on Debian/Ubuntu systems and also make the init script skip
*.dpkg-new files when loading profiles.
 2007-03-30 16:09:50 +00:00
Jesse Michael
3d84f865c9 The version of perl included with Ubuntu's Feisty release is generating 
extra perl warnings about using an uninitialized value in a pattern
match when the user uses the arrow keys to move up and down in the option
list when asking how to handle path access rules.  This makes sure the
variables used in m// operations are always defined.
 2007-03-30 16:04:04 +00:00
Andreas Gruenbacher
b73d827660 Fix build: screwed up because the build dependencies are broken; changes to regexp.y don't trigger the appropriate rebuilds 2007-03-30 15:58:15 +00:00
Jesse Michael
9672644589 Add a top-level "catch-all" GPLv2 license to cover any files that are 
not explictly marked.
 2007-03-30 15:47:14 +00:00
Andreas Gruenbacher
212b828384 Comment out some dead code 2007-03-30 15:20:57 +00:00
Andreas Gruenbacher
36e95daeb8 Get rid of all the POS_ and some other unused definitions 2007-03-30 14:59:13 +00:00
Andreas Gruenbacher
aeb6205ce8 Add reference counting on class Node so that we will be able to reuse AcceptNodes 2007-03-30 14:13:56 +00:00
Steve Beattie
1bdc66f696 Add buildrequires on flex and bison, from coolo@suse.de 2007-03-29 21:46:20 +00:00
Jesse Michael
33a58a858d keep logprof/genprof from spinning forever if the very last line in the 
logfile is "PERMITTING x access to ..."
 2007-03-29 16:39:28 +00:00
Andreas Gruenbacher
94f53ffcc9 Update link patch according to yesterday's discussion 2007-03-29 15:12:04 +00:00
Andreas Gruenbacher
e839f8ac74 Add reintroduce-interface-lock.diff 2007-03-28 15:56:32 +00:00
Steve Beattie
79e6a4fec5 This patch fixes up a couple of bashisms in the rc.apparmor.functions 
file that prevented it from working correctly on systems where /bin/sh
isn't bash, and is probably more readable to boot. It still will parse
things properly when confined binaries or thier corresponding profiles
contain spaces in their names.

Fix based on feedback and patches from Arkadiusz Miskiewicz
<arekm@maven.pl>/PLD and Kees Cook/Ubuntu.
 2007-03-27 18:38:28 +00:00
Steve Beattie
c54f56b49f Fixup another messed up NAME section, this time for apparmor.7. 2007-03-27 03:50:21 +00:00
Steve Beattie
c2d4717c12 Blarg, pod2man needed a blank line between =pod and =head1 to get the 
NAME section correct. This fixes a lintian warning as reported by Kees
Cook of Ubuntu.
 2007-03-26 21:22:28 +00:00
Steve Beattie
a2b9ac62fc Minor initscript cleanups thanks to Kees Cook and Magnus Runesson's 
Ubuntification.
 2007-03-26 20:52:45 +00:00
Andreas Gruenbacher
188a1b56c4 Bunch of stuff in reply to JJ's latest updates 2007-03-26 19:37:35 +00:00
Steve Beattie
89158886fe Bleah, we weren't including the made specfile (with the embedded svn 
repository version) into the 'dist' tarballs.
 2007-03-26 19:30:14 +00:00
John Johansen
4603c8829d patch to convert complain mode to learning mode 2007-03-26 19:12:41 +00:00
Steve Beattie
86576e01c8 Fix from Magnus Runesson <m.runesson@gmail.com>/Ubuntu to 
remove pod2man/podhtml tmpfiles during 'make clean'.
 2007-03-26 19:09:59 +00:00
Steve Beattie
9c95d02ac8 Patch from Magnus Runesson <m.runesson@gmail.com> / Ubuntu. We exclude 
the papers directory from the generated tarballs, so attempting to
install them in 'make install' won't work so well.
 2007-03-26 17:07:51 +00:00
John Johansen
7d43226fbd A fix_apparmor_getprocattr.diff 
fix getprocattr so that it returns the start of the profile name string
instead of the end of it.

A      rcu-locking-docs.txt
Change the locking docs to reflect the locking changes for rcu
aa_task_contexts

A      fix-rename-file-type.diff
Use the dentry->inode to determine if the medieated dentry is a directory.
The use of the inode that is pasted in is incorrect because it is
often the parent inode of the dentry being mediated.

A      misc-typos.diff
Fix a few miscellaneous typos

A      rcu-stale-forward-ptr.diff
A      rcu-caps-cache-comment.diff
Add a comment as to why resetting the caps cache instead of propogating it
is the right thing to do.

A      warn-info-messages.diff
Convert AA_WARN to us aa_audit_message, most of these messages while
not necessary for learning mode should be present in the logs with
the other apparmor messages.

A      rename-activate-unpack.diff
rename the interface routines to use unpack instead of activate, its
simpler and more standard.

j
 2007-03-26 10:18:14 +00:00
John Johansen
f5a8698fdf add back in MAY_APPEND filtering that was accidentally removed in r475 with dir rename fix 2007-03-25 07:08:36 +00:00
Jesse Michael
0d2e46088b need these fixes for the regression tests to run on ubuntu 2007-03-24 00:59:27 +00:00
Steve Beattie
ec03fafc16 Whoops, referred to a a couple of aa_eventd functions in 
rc.apparmor.functions.
 2007-03-24 00:13:04 +00:00
Steve Beattie
f85eb7fdc2 Fix build failure. 2007-03-23 23:52:36 +00:00
Steve Beattie
1afc2eee2b Add build dependency on g++ compiler 
Pass on extra warning flags to pcre lib.
No need for recursive delete on the libstdc++ line.
 2007-03-23 20:48:29 +00:00
Steve Beattie
a63b132ea2 Add a testcase for a writeonly link (wl -> w) 2007-03-23 19:10:45 +00:00
Steve Beattie
f5109ad203 This patch makes the utils tools consistent with the initscript as to 
which sets of files they ignore (rpm backups, dotfiles, and emacs
backups). It moves the tests into a common function so that
modifications only need to occur in one location.
 2007-03-23 18:52:22 +00:00