Merge lp:~jdstrand/nuntium/nuntium-lp1296415 into lp:nuntium

Proposed by Jamie Strandboge on 2014-06-24
Status: Work in progress
Proposed branch: lp:~jdstrand/nuntium/nuntium-lp1296415
Merge into: lp:nuntium
Diff against target: 65 lines (+25/-0)
6 files modified
debian/control (+1/-0)
debian/nuntium.dirs (+2/-0)
debian/nuntium.install (+1/-0)
debian/nuntium.links (+1/-0)
debian/rules (+4/-0)
debian/usr.bin.nuntium (+16/-0)
To merge this branch: bzr merge lp:~jdstrand/nuntium/nuntium-lp1296415
Reviewer Review Type Date Requested Status
Ubuntu Phablet Team 2014-06-24 Pending
Review via email: mp+224365@code.launchpad.net

Commit message

  * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
    - add debian/usr.bin.nuntium
    - debian/control: Build-Depends on dh-apparmor
    - debian/rules: update override_dh_installdeb to use dh_apparmor
    - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
      and etc/apparmor.d
    - debian/nuntium.install: install profile in to place
    - debian/nuntium.links: symlink AppArmor profile in to

Description of the change

  * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
    - add debian/usr.bin.nuntium
    - debian/control: Build-Depends on dh-apparmor
    - debian/rules: update override_dh_installdeb to use dh_apparmor
    - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
      and etc/apparmor.d
    - debian/nuntium.install: install profile in to place
    - debian/nuntium.links: symlink AppArmor profile in to

To post a comment you must log in.
46. By Jamie Strandboge on 2014-06-24

debian/usr.bin.nuntium: more closely mimic unconfined with exec transitions

Sergio Schvezov (sergiusens) wrote :

Changing status from jdstrand's email about it not being ready.

Unmerged revisions

46. By Jamie Strandboge on 2014-06-24

debian/usr.bin.nuntium: more closely mimic unconfined with exec transitions

45. By Jamie Strandboge on 2014-06-24

 * add lenient AppArmor profile to allow connecting to ofono (LP: #1296415)
   - add debian/usr.bin.nuntium
   - debian/control: Build-Depends on dh-apparmor
   - debian/rules: update override_dh_installdeb to use dh_apparmor
   - debian/nuntium.dirs: add etc/apparmor/init/network-interface-security
     and etc/apparmor.d
   - debian/nuntium.install: install profile in to place
   - debian/nuntium.links: symlink AppArmor profile in to
     network-interface-security to ensure it is loaded in time

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
=== modified file 'debian/control'
--- debian/control 2014-05-13 17:06:46 +0000
+++ debian/control 2014-06-24 22:21:18 +0000
@@ -10,6 +10,7 @@
10 golang-go-dbus-dev,10 golang-go-dbus-dev,
11 golang-go-xdg-dev,11 golang-go-xdg-dev,
12 golang-gocheck-dev,12 golang-gocheck-dev,
13 dh-apparmor,
13Standards-Version: 3.9.514Standards-Version: 3.9.5
14Homepage: https://launchpad.net/nuntium15Homepage: https://launchpad.net/nuntium
15Vcs-Browser: http://bazaar.launchpad.net/~phablet-team/nuntium/trunk/files16Vcs-Browser: http://bazaar.launchpad.net/~phablet-team/nuntium/trunk/files
1617
=== added file 'debian/nuntium.dirs'
--- debian/nuntium.dirs 1970-01-01 00:00:00 +0000
+++ debian/nuntium.dirs 2014-06-24 22:21:18 +0000
@@ -0,0 +1,2 @@
1etc/apparmor/init/network-interface-security
2etc/apparmor.d
03
=== modified file 'debian/nuntium.install'
--- debian/nuntium.install 2014-04-03 19:25:14 +0000
+++ debian/nuntium.install 2014-06-24 22:21:18 +0000
@@ -1,2 +1,3 @@
1debian/nuntium.conf /usr/share/upstart/sessions/1debian/nuntium.conf /usr/share/upstart/sessions/
2usr/bin/nuntium2usr/bin/nuntium
3debian/usr.bin.nuntium etc/apparmor.d
34
=== added file 'debian/nuntium.links'
--- debian/nuntium.links 1970-01-01 00:00:00 +0000
+++ debian/nuntium.links 2014-06-24 22:21:18 +0000
@@ -0,0 +1,1 @@
1etc/apparmor.d/usr.bin.nuntium etc/apparmor/init/network-interface-security/usr.bin.nuntium
02
=== modified file 'debian/rules'
--- debian/rules 2014-06-21 19:39:53 +0000
+++ debian/rules 2014-06-24 22:21:18 +0000
@@ -31,3 +31,7 @@
3131
32override_dh_strip:32override_dh_strip:
33 echo "Skipping strip"33 echo "Skipping strip"
34
35override_dh_installdeb:
36 dh_apparmor --profile-name=usr.bin.nuntium -pnuntium
37 dh_installdeb
3438
=== added file 'debian/usr.bin.nuntium'
--- debian/usr.bin.nuntium 1970-01-01 00:00:00 +0000
+++ debian/usr.bin.nuntium 2014-06-24 22:21:18 +0000
@@ -0,0 +1,16 @@
1#include <tunables/global>
2
3# Permissive profile to have profile name to limit access to ofonod (LP: #1296415)
4/usr/bin/nuntium (attach_disconnected) {
5 capability,
6 mount,
7 remount,
8 umount,
9 network,
10 / rwkl,
11 /** rwlkm,
12 /** pix,
13 dbus,
14 signal,
15 ptrace,
16}

Subscribers

People subscribed via source and target branches