AppArmor

View Bazaar branches
Get this repository:
git clone https://git.launchpad.net/apparmor

Branches

Name Last Modified Last Commit
master 2019-10-03 17:53:21 UTC 2019-10-03
Merge branch 'profile-usr.sbin.winbindd' into 'master'

Author: Christian Boltz
Author Date: 2019-10-03 17:53:21 UTC

Merge branch 'profile-usr.sbin.winbindd' into 'master'

Update usr.sbin.winbindd profile

Winbind requires access to `/var/cache/samba/msg.lock/*`.

On Arch Linux Winbind's pid is set to `/run/winbindd.pid` ( https://git.archlinux.org/svntogit/packages.git/tree/trunk/winbindd.service?h=packages/samba ).

See merge request apparmor/apparmor!411

Acked-by: John Johansen <john.johansen@canonical.com>
Acked-by: Christian Boltz <apparmor@cboltz.de>
apparmor-2.10 2019-09-23 18:56:15 UTC 2019-09-23
Merge branch 'cboltz-status-parenthesis' into 'master'

Author: Christian Boltz
Author Date: 2019-09-23 18:55:22 UTC

Merge branch 'cboltz-status-parenthesis' into 'master'

aa-status: handle profile names containing '('

Closes #51

See merge request apparmor/apparmor!415

Acked-by: John Johansen <john.johansen@canonical.com> for 2.10..master

(cherry picked from commit b76567ce104afe4da503482e386aea40d280f6a9)

41d26b01 aa-status: handle profile names containing '('
apparmor-2.11 2019-09-23 18:56:04 UTC 2019-09-23
Merge branch 'cboltz-status-parenthesis' into 'master'

Author: Christian Boltz
Author Date: 2019-09-23 18:55:22 UTC

Merge branch 'cboltz-status-parenthesis' into 'master'

aa-status: handle profile names containing '('

Closes #51

See merge request apparmor/apparmor!415

Acked-by: John Johansen <john.johansen@canonical.com> for 2.10..master

(cherry picked from commit b76567ce104afe4da503482e386aea40d280f6a9)

41d26b01 aa-status: handle profile names containing '('
apparmor-2.12 2019-09-23 18:55:53 UTC 2019-09-23
Merge branch 'cboltz-status-parenthesis' into 'master'

Author: Christian Boltz
Author Date: 2019-09-23 18:55:22 UTC

Merge branch 'cboltz-status-parenthesis' into 'master'

aa-status: handle profile names containing '('

Closes #51

See merge request apparmor/apparmor!415

Acked-by: John Johansen <john.johansen@canonical.com> for 2.10..master

(cherry picked from commit b76567ce104afe4da503482e386aea40d280f6a9)

41d26b01 aa-status: handle profile names containing '('
apparmor-2.13 2019-09-23 18:55:36 UTC 2019-09-23
Merge branch 'cboltz-status-parenthesis' into 'master'

Author: Christian Boltz
Author Date: 2019-09-23 18:55:22 UTC

Merge branch 'cboltz-status-parenthesis' into 'master'

aa-status: handle profile names containing '('

Closes #51

See merge request apparmor/apparmor!415

Acked-by: John Johansen <john.johansen@canonical.com> for 2.10..master

(cherry picked from commit b76567ce104afe4da503482e386aea40d280f6a9)

41d26b01 aa-status: handle profile names containing '('
apparmor-2.9 2018-06-29 18:30:00 UTC 2018-06-29
profiles: adjust abstractions/python for python 3.7

Author: Christian Boltz
Author Date: 2018-06-28 11:34:08 UTC

profiles: adjust abstractions/python for python 3.7

Python 3.7 was released yesterday - and to make the abstraction
future-proof, also cover 3.8 and 3.9 in advance ;-)

(cherry picked from commit 01f41fbff821be7264a4b0aac83ed04747395055)

Signed-off-by: Steve Beattie <steve.beattie@canonical.com>
PR: https://gitlab.com/apparmor/apparmor/merge_requests/139
apparmor-2.8 2017-10-28 05:46:04 UTC 2017-10-28
git conversion: move .bzrignore to .gitignore

Author: Steve Beattie
Author Date: 2017-10-28 05:46:04 UTC

git conversion: move .bzrignore to .gitignore

Signed-off-by: Steve Beattie <steve.beattie@canonical.com>
apparmor-2.7 2012-04-25 19:58:58 UTC 2012-04-25
Merge from trunk rev 2037:

Author: Kees Cook
Author Date: 2012-04-25 19:58:58 UTC

Merge from trunk rev 2037:

The m4 shipped to handle Python was incorrectly clearing
$CPPFLAGS. Additionally, do not repeat compiler flags for automake
targets that already include them, and pass more flags to the Perl build.

Signed-off-by: Kees Cook <kees@ubuntu.com>
Acked-By: Steve Beattie <sbeattie@ubuntu.com>
apparmor-2.6 2011-08-26 23:03:03 UTC 2011-08-26
Merge from trunk revision 1805:

Author: Steve Beattie
Author Date: 2011-08-26 23:03:03 UTC

Merge from trunk revision 1805:

  Attached is a patch to make the initscript not fail if /tmp is full
  by converting the comm(1) usage on temporary files to an embedded
  awk script. On both Ubuntu and OpenSUSE, a version of awk (mawk in
  Ubuntu, gawk in OpenSUSE) is either a direct or indirect dependency
  on the minimal or base package set, and the original reporter also
  mentioned that an awk-based solution would be palatable in a way
  that converting to bash, or using perl or python here would not be.

  In the embedded awk script, I've tried to avoid gawk or mawk
  specific behaviors or extensions; e.g. this is the reason for the
  call to sort on the output of the awk script, rather than using
  gawk's asort(). But please let me know if you see anything that
  shouldn't be portable across awk implementations.

  An additional issue that is fixed in both scripts is handling
  child profiles (e.g. hats) during reload. If child profiles are
  filtered out (via grep -v '//') of the list to consider, then
  on reloading a profile where a child profile has been removed or
  renamed, that child profile will continue to stick around. However,
  if the profile containing child profiles is removed entirely,
  if the initscript attempts to unload the child profiles after the
  parent is removed, this will fail because they were unloaded when
  the parent was unloaded. Thus I removed any filtering of child
  profiles out, but do a post-awk reverse sort which guarantees that
  any child profiles will be removed before their parent is. I also
  added the LC_COLLATE=C (based on the Ubuntu version) to the sort
  call to ensure a consistent sort order.

  To restate, the problem with the existing code is that it creates
  temporary files in $TMPDIR (by default /tmp) and if that partition
  is full, problems with the reload action ensue. Alternate solutions
  include switching the initscript to use bash and its <$() extension
  or setting TMPDIR to /dev/shm/. The former is unpalatable to some
  (particularly for an initscript), and for the latter, /dev/shm is
  only guaranteed to exist on GNU libc based systems (glibc apparently
  expects /dev/shm to exist for its POSIX shared memory implementation;
  see shm_overview(7)). So to me, awk (sans GNU extensions) looks
  to be the least bad option here.

Nominated-By: Steve Beattie <sbeattie@ubuntu.com>
Acked-By: John Johansen <john.johansen@canonical.com>

Bug: https://launchpad.net/bugs/775785
apparmor-2.5 2011-06-06 17:39:54 UTC 2011-06-06
Rename tags to conform with git tag requirements

Author: John Johansen
Author Date: 2011-06-06 17:39:54 UTC

Rename tags to conform with git tag requirements

Rename tags
  apparmor_2.5.2~rc1 to apparmor_2.5.2-rc1
  apparmor_2.6.0~rc1 to apparmor_2.6.0-rc1

this is necessary for export to the git mirror

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor-2.3 2008-05-27 12:04:33 UTC 2008-05-27
remove for-mainline dir from kernel patches

Author: John Johansen
Author Date: 2008-05-27 12:04:33 UTC

remove for-mainline dir from kernel patches
apparmor-2.1 2008-03-28 07:19:57 UTC 2008-03-28
merge -r 1158 - fix fatal errors so that they have an exit with an exit code

Author: John Johansen
Author Date: 2008-03-28 07:19:57 UTC

merge -r 1158 - fix fatal errors so that they have an exit with an exit code
of 127
112 of 12 results FirstPreviousNextLast

Other repositories

Name Last Modified
lp:apparmor 3 hours ago
lp:~apparmor-dev/apparmor/+git/apparmor-trunk-daily-ppa 2019-02-19
lp:~sbeattie/apparmor/+git/apparmor 2017-10-28
lp:~jjohansen/apparmor 2016-05-10
lp:~tyhicks/apparmor 2016-03-14
15 of 5 results FirstPreviousNextLast
You can't create new repositories for AppArmor.