mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-31 06:16:03 +00:00
Code Issues Releases Wiki Activity
Files
3cb147e25ca2e59e78038811b5778b7e6af50a1a
apparmor/parser
History
John Johansen 3cb147e25c [https://bugzilla.novell.com/show_bug.cgi?id=172061] 
This (updated) patch to trunk adds support for Px and Ux (toggle
bprm_secure on exec) in the parser, As requested, lowercase p and u
corresponds to an unfiltered environmnet on exec, uppercase will filter
the environment.  It applies after the 'm' patch.

As a side effect, I tried to reduce the use of hardcoded characters in
the debugging statements -- there are still a few warnings that have
hard coded letters in them; not sure I can fix them all.

This version issues a warning for every unsafe ux and issues a single
warning for the first 'R', 'W', 'X', 'L', and 'I' it encounters,
except when the "-q" or "--quiet" flag , "--remove" profile flag, or
"-N" report names flags are passed.  Unfortunately, it made the logic
somewhat more convoluted.  Wordsmithing improvements welcome.
2006-08-04 17:14:49 +00:00
..
pcre
Import the rest of the core functionality of the internal apparmor
2006-04-11 21:52:54 +00:00
po
Set svn keyword properties on a couple of missed files.
2006-05-31 21:44:14 +00:00
tst
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
apparmor-parser.spec.in
Two changes:
2006-05-31 22:38:30 +00:00
COPYING.GPL
Import the rest of the core functionality of the internal apparmor
2006-04-11 21:52:54 +00:00
frob_slack_rc
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
immunix.h
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
Makefile
Two changes:
2006-05-31 22:38:30 +00:00
parser_include.c
https://bugzilla.novell.com/show_bug.cgi?id=160330
2006-04-28 03:26:57 +00:00
parser_include.h
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
parser_interface.c
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
parser_lex.l
[https://bugzilla.novell.com/show_bug.cgi?id=175388]
2006-08-04 17:14:06 +00:00
parser_main.c
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
parser_merge.c
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
parser_misc.c
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
parser_policy.c
Fixup a type-mismatch that happened to not cause crashes purely by
2006-05-18 16:26:28 +00:00
parser_regex.c
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
parser_symtab.c
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
parser_variable.c
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
parser_yacc.y
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
parser.h
[https://bugzilla.novell.com/show_bug.cgi?id=172061]
2006-08-04 17:14:49 +00:00
rc.aaeventd.suse
Remove NOVELL from Short-Descriptions; make the aaeventd have a unique (and meaningful) short-description. Replace some red hat initscript 'subdomain' with 'apparmor'
2006-05-09 18:01:05 +00:00
rc.apparmor.debian
Remove NOVELL from Short-Descriptions; make the aaeventd have a unique (and meaningful) short-description. Replace some red hat initscript 'subdomain' with 'apparmor'
2006-05-09 18:01:05 +00:00
rc.apparmor.functions
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
rc.apparmor.redhat
Remove NOVELL from Short-Descriptions; make the aaeventd have a unique (and meaningful) short-description. Replace some red hat initscript 'subdomain' with 'apparmor'
2006-05-09 18:01:05 +00:00
rc.apparmor.slackware
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00
rc.apparmor.suse
Remove NOVELL from Short-Descriptions; make the aaeventd have a unique (and meaningful) short-description. Replace some red hat initscript 'subdomain' with 'apparmor'
2006-05-09 18:01:05 +00:00
README
test
2006-07-31 20:49:33 +00:00
subdomain.conf
Update keywords attribute, svn:ignore attribute, update Makefile to
2006-04-12 03:09:10 +00:00

README 

Package Contents
------------------
  README 		- This file.

  subdomain_parser	- This program loads the subdomain database into
			  the kernel via the sysctl(2) interface.
  subdomain.5		- Man page explaining the structure of the
			  subdomain profile file.
  change_hat.2		- Man page explaining the usage of the change_hat
			  syscall.

subdomain_parser takes all of its input from STDIN.  Thus, if you want to
use it to load a description file, you want to do something like:

	./subdomain_parser < /path/to/database/file

Of course, you can use cat, etc. to load the contents of multiple files at
the same time.

subdomain_parser allows you to add, replace, and remove definitions
through the use of command line options. The default is to add.
`subdomain_parser --help` shows what the command line options are.

You can also find more information at
<http://forge.novell.com/modules/xfmod/project/?apparmor>.

Please send all complaints, bug reports, feature requests, rants about the
software, and questions to apparmor-general@forge.novell.com. Security
issues should be directed to security@suse.de or secure@novell.com,
where we will attempt to conform to the RFP vulnerability disclosure
protocol: http://www.wiretrip.net/rfp/policy.html

The parser uses the PCRE (Perl Compatible Regular Expression) engine,
which was written by Philip Hazel and is copyright by the University
of Cambridge, England. For more information on the PCRE engine, see
<ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/>

Thanks.

-- The AppArmor development team