nuntium

Merge lp:~jdstrand/nuntium/nuntium-lp1296415 into lp:nuntium

  1. nuntium-lp1296415
  2. Merge into trunk
Proposed by Jamie Strandboge
Status: Work in progress
Proposed branch: lp:~jdstrand/nuntium/nuntium-lp1296415
Merge into: lp:nuntium
Diff against target: 65 lines (+25/-0)
6 files modified
debian/control (+1/-0)
debian/nuntium.dirs (+2/-0)
debian/nuntium.install (+1/-0)
debian/nuntium.links (+1/-0)
debian/rules (+4/-0)
debian/usr.bin.nuntium (+16/-0)
To merge this branch: bzr merge lp:~jdstrand/nuntium/nuntium-lp1296415
Reviewer Review Type Date Requested Status
Ubuntu Phablet Team Pending
Review via email: mp+224365@code.launchpad.net

Commit message

  * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
    - add debian/usr.bin.nuntium
    - debian/control: Build-Depends on dh-apparmor
    - debian/rules: update override_dh_installdeb to use dh_apparmor
    - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
      and etc/apparmor.d
    - debian/nuntium.install: install profile in to place
    - debian/nuntium.links: symlink AppArmor profile in to

Description of the change

  * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
    - add debian/usr.bin.nuntium
    - debian/control: Build-Depends on dh-apparmor
    - debian/rules: update override_dh_installdeb to use dh_apparmor
    - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
      and etc/apparmor.d
    - debian/nuntium.install: install profile in to place
    - debian/nuntium.links: symlink AppArmor profile in to

To post a comment you must log in.
lp:~jdstrand/nuntium/nuntium-lp1296415 updated
46. By Jamie Strandboge

debian/usr.bin.nuntium: more closely mimic unconfined with exec transitions

Revision history for this message
Sergio Schvezov (sergiusens) wrote :

Changing status from jdstrand's email about it not being ready.

Reply

Unmerged revisions

46. By Jamie Strandboge

debian/usr.bin.nuntium: more closely mimic unconfined with exec transitions

45. By Jamie Strandboge

 * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
   - add debian/usr.bin.nuntium
   - debian/control: Build-Depends on dh-apparmor
   - debian/rules: update override_dh_installdeb to use dh_apparmor
   - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
     and etc/apparmor.d
   - debian/nuntium.install: install profile in to place
   - debian/nuntium.links: symlink AppArmor profile in to
     network-interface-security to ensure it is loaded in time

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== modified file 'debian/control'
2--- debian/control 2014-05-13 17:06:46 +0000
3+++ debian/control 2014-06-24 22:21:18 +0000
4@@ -10,6 +10,7 @@
5 golang-go-dbus-dev,
6 golang-go-xdg-dev,
7 golang-gocheck-dev,
8+ dh-apparmor,
9 Standards-Version: 3.9.5
10 Homepage: https://launchpad.net/nuntium
11 Vcs-Browser: http://bazaar.launchpad.net/~phablet-team/nuntium/trunk/files
12
13=== added file 'debian/nuntium.dirs'
14--- debian/nuntium.dirs 1970-01-01 00:00:00 +0000
15+++ debian/nuntium.dirs 2014-06-24 22:21:18 +0000
16@@ -0,0 +1,2 @@
17+etc/apparmor/init/network-interface-security
18+etc/apparmor.d
19
20=== modified file 'debian/nuntium.install'
21--- debian/nuntium.install 2014-04-03 19:25:14 +0000
22+++ debian/nuntium.install 2014-06-24 22:21:18 +0000
23@@ -1,2 +1,3 @@
24 debian/nuntium.conf /usr/share/upstart/sessions/
25 usr/bin/nuntium
26+debian/usr.bin.nuntium etc/apparmor.d
27
28=== added file 'debian/nuntium.links'
29--- debian/nuntium.links 1970-01-01 00:00:00 +0000
30+++ debian/nuntium.links 2014-06-24 22:21:18 +0000
31@@ -0,0 +1,1 @@
32+etc/apparmor.d/usr.bin.nuntium etc/apparmor/init/network-interface-security/usr.bin.nuntium
33
34=== modified file 'debian/rules'
35--- debian/rules 2014-06-21 19:39:53 +0000
36+++ debian/rules 2014-06-24 22:21:18 +0000
37@@ -31,3 +31,7 @@
38
39 override_dh_strip:
40 echo "Skipping strip"
41+
42+override_dh_installdeb:
43+ dh_apparmor --profile-name=usr.bin.nuntium -pnuntium
44+ dh_installdeb
45
46=== added file 'debian/usr.bin.nuntium'
47--- debian/usr.bin.nuntium 1970-01-01 00:00:00 +0000
48+++ debian/usr.bin.nuntium 2014-06-24 22:21:18 +0000
49@@ -0,0 +1,16 @@
50+#include <tunables/global>
51+
52+# Permissive profile to have profile name to limit access to ofonod (LP: #1296415)
53+/usr/bin/nuntium (attach_disconnected) {
54+ capability,
55+ mount,
56+ remount,
57+ umount,
58+ network,
59+ / rwkl,
60+ /** rwlkm,
61+ /** pix,
62+ dbus,
63+ signal,
64+ ptrace,
65+}

Subscribers

People subscribed via source and target branches