mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-08-22 01:57:43 +00:00
Code Issues Releases Wiki Activity
apparmor/parser
History
John Johansen 8a3edd677c Require matched mode strings to terminate 
mode strings overlap with other potential commands, or strings, and as
currently written can be match as a leading substring of an ID.  Eliminate
the leading substring case by requiring that for a mode string to be
recognized it must be terminated by whitespace, eol, eof, or
comma (end of rule).

The other cases where modes string overlap are ambiguous and the ID should
be quoted to remove the ambiguity.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Kees Cook <kees@ubuntu.com>
2012-02-16 07:56:53 -08:00
..
libapparmor_re
Make second minimization pass optional
2012-02-16 07:43:02 -08:00
po
Fix list email typo
2011-02-23 15:57:36 -08:00
tst
It's possible that git doesn't like to create empty directories, so
2011-08-09 01:10:19 -07:00
apparmor_parser.pod
Add an option to allow setting the cache's location.
2012-01-11 17:25:18 +01:00
apparmor-parser.spec.in
Add an example parser.conf file
2011-10-07 14:43:54 -07:00
apparmor.d.pod
apparmor.d.pod:
2011-04-01 20:35:14 +02:00
apparmor.pod
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
apparmor.vim.pod
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
COPYING.GPL
rpmlint complains about an outdated FSF address in parser/COPYING.GPL.
2011-11-27 13:52:06 +01:00
frob_slack_rc
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
immunix.h
Update x conflict failure message
2011-02-22 03:47:03 -08:00
Makefile
Author: Michael (kensington)
2011-11-10 09:36:52 -08:00
parser_alias.c
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
parser_common.c
Track full permission set through all stages of DFA construction.
2012-02-16 07:41:40 -08:00
parser_include.c
This patch adds a couple of additional lineno reporting testcases:
2010-06-25 12:43:48 -07:00
parser_include.h
[v2: added clean-ups, backed off on some of the build silencing]
2011-05-13 02:12:49 -07:00
parser_interface.c
Fix apparmor_parser when removing a profile from an alternate namespace
2012-01-02 15:35:21 -08:00
parser_lex.l
Require matched mode strings to terminate
2012-02-16 07:56:53 -08:00
parser_main.c
Make second minimization pass optional
2012-02-16 07:43:02 -08:00
parser_merge.c
Fix compilation errors that slipped in. Yes, I realize this breaks the
2011-02-23 14:40:07 -08:00
parser_misc.c
Convert FLAGS_MODE start condition to a generic list of values start cond
2012-02-16 07:49:12 -08:00
parser_policy.c
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
parser_regex.c
[v2: added clean-ups, backed off on some of the build silencing]
2011-05-13 02:12:49 -07:00
parser_symtab.c
[v2: added clean-ups, backed off on some of the build silencing]
2011-05-13 02:12:49 -07:00
parser_variable.c
[v2: added clean-ups, backed off on some of the build silencing]
2011-05-13 02:12:49 -07:00
parser_yacc.y
Instead of using a special flags= token and keyword use TOK_CONDID
2012-02-16 07:53:04 -08:00
parser.conf
Commit the example parser.conf file that was supposed to be part of
2011-10-09 20:15:03 -07:00
parser.h
Add new processid fn that handles both quoted and unquoted ids
2012-01-02 16:48:44 -08:00
rc.aaeventd.redhat
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
rc.aaeventd.suse
openSUSE patch to remove the "-f" parameter from startproc in rc.aaeventd.suse /
2011-08-13 14:22:35 +02:00
rc.apparmor.debian
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
rc.apparmor.functions
Author: Michael (kensington)
2011-11-10 09:43:10 -08:00
rc.apparmor.redhat
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
rc.apparmor.slackware
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
rc.apparmor.suse
It looks like rc.apparmor.functions renamed "aa_log_action_begin()" to
2011-09-15 20:20:23 +02:00
README
Remove pcre and update tests where necessary
2010-07-31 16:00:52 -07:00
subdomain.conf
Here's an update to rename another chunk of things that still used
2011-01-13 13:58:26 -08:00
subdomain.conf.pod
as ACKed on IRC, drop the unused $Id$ tags everywhere
2010-12-20 12:29:10 -08:00
techdoc.tex
From: Jeff Mahoney <jeffm@suse.com>
2011-02-09 14:29:05 -08:00

README 

The apparmor_parser allows you to add, replace, and remove AppArmor
policy through the use of command line options. The default is to add.
`apparmor_parser --help` shows what the command line options are.

You can also find more information at
<http://forge.novell.com/modules/xfmod/project/?apparmor>.

Please send all complaints, bug reports, feature requests, rants about the
software, and questions to apparmor-general@forge.novell.com. Security
issues should be directed to security@suse.de or secure@novell.com,
where we will attempt to conform to the RFP vulnerability disclosure
protocol: http://www.wiretrip.net/rfp/policy.html

Thanks.

-- The AppArmor development team