mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/parser
History
Christian Boltz 27664acf9a Fix aa_log_end_msg() in rc.apparmor.suse 
"rcapparmor kill" results in a funny error message:
    /lib/apparmor/rc.apparmor.functions: line 441: return: -v: invalid option
    return: usage: return [n]

SLE12 includes a patch that prevents this error message, but also
prevents that $? is handed over correctly to rc_status. This means that
"rcapparmor kill" will happily display "done" even with a compiled-in
apparmor module that can't be unloaded.

This patch is the improved version - it adds a small helper function to
set $? (as handed over to aa_log_end_msg()) and then calls rc_status -v.
This means that "rcapparmor kill" now shows "failed" because it's
impossible to unload something that is compiled directly into the
kernel.

References: https://bugzilla.opensuse.org/show_bug.cgi?id=862170 (non-public)


Acked-by: Seth Arnold <seth.arnold@canonical.com> for 2.9 and trunk
2015-07-24 00:08:50 +02:00
..
libapparmor_re Fix compilation of audit modifiers 2015-03-18 10:22:31 -07:00
po Launchpad automatic translations update. 2014-10-27 05:32:33 +00:00
tst Fix some parser test syntax errors 2015-07-06 13:27:12 +02:00
af_rule.cc parser: fix more gcc 5 compilation problems 2015-02-26 15:20:19 -08:00
af_rule.h C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
af_unix.cc disable downgrade and not enforced rule messages by default 2014-10-08 13:20:20 -07:00
af_unix.h C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
apparmor.d.pod delete traces of program-chunks directory from apparmor.d(5) 2015-02-26 18:45:41 +01:00
apparmor.pod can ?not fix apparmor.pod 2013-12-12 03:07:37 +01:00
apparmor_parser.pod Document the ability for apparmor_parser to load profiles from a dir 2014-10-20 13:38:24 -04:00
common_optarg.c Split dfa optimization and dump flag handling into a separate file so that it can be shared with DFA test programs 2014-04-23 11:10:41 -07:00
common_optarg.h Split dfa optimization and dump flag handling into a separate file so that it can be shared with DFA test programs 2014-04-23 11:10:41 -07:00
COPYING.GPL rpmlint complains about an outdated FSF address in parser/COPYING.GPL. 2011-11-27 13:52:06 +01:00
dbus.cc parser: fix dbus.cc issue when building with gcc 5 2015-02-26 16:18:15 -08:00
dbus.h C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
frob_slack_rc as ACKed on IRC, drop the unused $Id$ tags everywhere 2010-12-20 12:29:10 -08:00
immunix.h Remove the old unused ptrace code that snuck in years ago. 2014-03-12 05:02:32 -07:00
lib.c parser: Fix return value of dirat_for_each() 2015-03-02 09:54:57 -06:00
lib.h parser: fix i386 breakage on min() argument mismatches 2014-04-17 09:20:40 -07:00
Makefile parser: fix make parser_regex missing dependency 2015-06-24 16:55:26 -07:00
mount.cc parser: Fix typo in mount rule error message 2014-12-12 08:21:31 -06:00
mount.h parser: Clean up the use of MS_REC in mount.h 2014-12-12 08:21:25 -06:00
network.c parser: fix warning in net_find_af_name 2015-03-19 00:14:12 -07:00
network.h parser: net_find_af_name: do not assume that address families are consecutive, 2015-03-03 12:04:13 -08:00
parser.conf Commit the example parser.conf file that was supposed to be part of 2011-10-09 20:15:03 -07:00
parser.h parser: Send PDEBUG() to stderr 2015-03-02 09:59:11 -06:00
parser_alias.c C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
parser_common.c disable downgrade and not enforced rule messages by default 2014-10-08 13:20:20 -07:00
parser_include.c put the gettext define in one place 2014-08-23 23:50:43 -07:00
parser_include.h allow directories to be passed to the parser 2013-10-26 00:15:13 -07:00
parser_interface.c fix: parser: close of fd with value of -1 2014-10-25 16:26:59 -04:00
parser_lex.l C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
parser_main.c Set cache file tstamp to the mtime of most recent policy file tstamp 2015-06-18 11:11:08 -07:00
parser_merge.c put the gettext define in one place 2014-08-23 23:50:43 -07:00
parser_misc.c parser: Fix -Wformat-extra-args warning 2015-03-02 09:59:14 -06:00
parser_policy.c parser: Fix "PDEBUG" redefined warning 2015-03-02 09:59:17 -06:00
parser_regex.c parser: fix compilation failure of deny link rules, expand equality tests 2015-03-23 12:43:57 -07:00
parser_symtab.c C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
parser_variable.c put the gettext define in one place 2014-08-23 23:50:43 -07:00
parser_yacc.y fix: auditing of capabilities 2014-10-07 12:50:23 -07:00
policydb.h Add the ability to mediate signals. 2014-04-23 11:35:29 -07:00
profile.cc parser: first step implementing fine grained mediation for unix domain sockets 2014-09-03 13:22:26 -07:00
profile.h parser: make flags defintion consistent 2014-09-12 23:53:39 -07:00
ptrace.cc disable downgrade and not enforced rule messages by default 2014-10-08 13:20:20 -07:00
ptrace.h C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
rc.apparmor.debian as ACKed on IRC, drop the unused $Id$ tags everywhere 2010-12-20 12:29:10 -08:00
rc.apparmor.functions Update the copyright dates for the apparmor_parser 2012-02-24 04:21:59 -08:00
rc.apparmor.redhat as ACKed on IRC, drop the unused $Id$ tags everywhere 2010-12-20 12:29:10 -08:00
rc.apparmor.slackware as ACKed on IRC, drop the unused $Id$ tags everywhere 2010-12-20 12:29:10 -08:00
rc.apparmor.suse Fix aa_log_end_msg() in rc.apparmor.suse 2015-07-24 00:08:50 +02:00
README parser - update README information 2013-10-11 22:14:28 -07:00
README.devel parser: add some developer documentation 2013-12-10 14:15:02 -08:00
rule.cc Move C++ files from .c suffix to .cc suffix 2014-05-09 15:34:34 -07:00
rule.h Add missing rule.[hc] files that should have been part of commit 2449 2014-04-07 11:41:25 -07:00
signal.cc disable downgrade and not enforced rule messages by default 2014-10-08 13:20:20 -07:00
signal.h C tools: rename __unused macro to unused 2014-10-02 12:58:54 -07:00
subdomain.conf Here's an update to rename another chunk of things that still used 2011-01-13 13:58:26 -08:00
subdomain.conf.pod fix broken URLs in various utils/*.pod files. 2013-09-19 21:17:39 +02:00
techdoc.tex various changes in building techdoc.tex: 2012-05-09 00:41:06 +02:00
unit_test.h Convert codomain to a class 2013-09-27 16:16:37 -07:00

README 

The apparmor_parser allows you to add, replace, and remove AppArmor
policy through the use of command line options. The default is to add.
`apparmor_parser --help` shows what the command line options are.

You can also find more information at http://wiki.apparmor.net

Please send all complaints, feature requests, rants about the software,
and questions to the apparmor@lists.ubuntu.com mailing list. Bug
reports can be filed against the AppArmor project on launchpad.net at
https://launchpad.net/apparmor or reported to the mailing list directly
for those who wish not to register for an account on launchpad.

Security issues can be filed as security bugs on launchpad
or directed to security@ubuntu.com. We will attempt to
conform to the RFP vulnerability disclosure protocol:
http://www.wiretrip.net/rfp/policy.html

Thanks.

-- The AppArmor development team