lp:ubuntu/karmic-security/apparmor

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

85. By Jamie Strandboge on 2011-01-05

* Fix for apparmor_parser not generating correct policy when mixing exec
  transitions with and without unconfined fallback transitions.
  - parser/immunix.h, parser/libapparmor_re/regexp.y: adjust dfa match flag
    table size and fix index calculation for pux and cux.
  - parser/tst/Makefile, parser/tst/gen-xtrans.pl,
    parser/tst/simple_tests/generated_x/readme: add comprehensive test cases
  - LP: #693082
* debian/control: Build-Depends on libpam0g-dev

84. By Marc Deslauriers on 2009-10-16

utils/SubDomain.pm: handle new format "null" log entries (LP: #446524)

83. By Jamie Strandboge on 2009-10-14

* abstractions/ubuntu-browsers: add Dooble
* abstractions/ubuntu-browsers: add chromium (LP: #448812)
* abstractions/gnome: add read for /etc/orbitrc
* abstractions/audio: add read for /etc/pulse/* for when ~/.pulse/* doesn't
  exist and these files are used for fallback

82. By Kees Cook on 2009-10-02

Do not use tools in /usr during initial start-up (LP: #439726).

81. By Jamie Strandboge on 2009-10-01

abstractions/X: allow mouse themes (LP: #438051)

80. By Kees Cook on 2009-09-25

[ Kees Cook ]
* Really fix quiet mode in initramfs (LP: #435285).
* Handle older kernel versions when loading profiles (LP: #429872):
  - parser/parser_{interface,main}.c: detect kernel version and downgrade.
  - debian/apparmor.functions, parser/parser_main.c: keep kernel features
    recorded in cache directory.
  - parser/parser_{interface,main}.c: add --skip-kernel-load for testing.
  - parser/tst/caching.*: add caching tests.
[ Jamie Strandboge ]
* abstractions/audio: add a few more files for pulseaudio

79. By Kees Cook on 2009-09-23

* Do not run AppArmor on the LiveCD, again (LP: #131976).
* More aggressively stay quiet when booting in quiet mode (LP: #435285).

78. By Kees Cook on 2009-09-21

debian/apparmor.{init-bottom,functions,initramfs}: perform initial
apparmor rule loading in initramfs.

77. By Marc Deslauriers on 2009-09-19

* added disabled apache2 profile (FFE LP: #430812):
  - add profiles/apparmor.d/usr.lib.apache2.mpm-prefork.apache2: new
    apache2 profile
  - add profiles/apparmor.d/apache2.d/phpsysinfo: example profile for the
    phpsysinfo application
  - profiles/Makefile: handle the apache2.d directory
  - add debian/libapache2-mod-apparmor.postinst: reload apparmor after
    installation since we now ship a profile in this package
  - add debian/libapache2-mod-apparmor.preinst: disable apache2 profile
    if the user does not already have a profile defined
  - add debian/libapache2-mod-apparmor.postrm: remove disabled symlink
    on purge
  - debian/rules: move apache2 profile to the libapache2-mod-apparmor
    package and create apache2.d directory
* utils/SubDomain.pm: handle "open" log entries (LP: #427966)
* added ouid parsing support (LP: #431929):
  - libraries/libapparmor/testsuite/test_multi.c
  - libraries/libapparmor/src/{scanner.l,grammar.y,aalogparse.h,
    libaalogparse.c}

76. By Kees Cook on 2009-09-09

[ Jamie Strandboge ]
* abstractions/fonts: allow links in @{HOME}/.fontconfig/**

[ Kees Cook ]
* debian/apparmor.init: expect that the securityfs is mounted, and only
  test for the mounted filesystem against the type column when it is not
  found.