lp://qastaging/ubuntu/quantal/apparmor

Created by James Westby and last modified
Get this branch:
bzr branch lp://qastaging/ubuntu/quantal/apparmor
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Mature

Recent revisions

35. By Steve Beattie

[ Micah Gersten ]
* Allow /etc/vdpau_wrapper.cfg r and /var/lib/xine/gxine.desktop r
  in the multimedia browser abstraction (LP: #1057642)
  - update profiles/apparmor.d/abstractions/ubuntu-browsers.d/multimedia

[ Steve Beattie ]
* debian/control: make libnotify-bin a Recommends rather than a
  Depends for use in server environments (LP: #1061879)
* debian/patches/0020-coredump_tests.patch: fix coredump regression
  tests (LP: #1050430)
* debian/patches/0021-webapps_abstraction.patch: add a few items
  triggered by using and installing webapps in firefox (LP: #1056418)
* debian/patches/0022-aa-decode-stdin.patch: fix aa-decode to process
  stdin correctly and decode encoded profiles names

34. By Stéphane Graber

Allow /var/lib/sss/mc/{group|passwd} for systems using sssd.
(LP: #1056391)

33. By Jamie Strandboge

* remove 0010-lp972367.patch and 0012-lp964510.patch which should have been
  dropped in 2.8.0-0ubuntu1 since they are included upstream
* debian/patches/0001-add-chromium-browser.patch:
  - add a couple of small accesses
  - add a child profile for xdgsettings (LP: #1045986)

32. By Jamie Strandboge

* 0015-fontconfig.patch: update fonts abstraction for new fontconfig paths
* 0016-cap-block-suspend.patch: add CAP_BLOCK_SUSPEND to severity.db. In
  the next version of AppArmor, this will replace 0006-cap-epollwakeup.patch
* 0017-gnome-poppler-data.patch: update gnome abstraction for poppler cMap
  tables

31. By Jamie Strandboge

* New upstream release
  - Drop the following patches, now included upstream:
    0003-add-aa-easyprof.patch
    0005-clean-common-from-vim.patch
    0006-use-linux-capability-h.patch
    0008-apparmor-lp963756.patch
    0009-apparmor-lp959560-part1.patch
    0010-apparmor-lp959560-part2.patch
    0011-apparmor-lp872446.patch
    0012-apparmor-lp978584.patch
    0013-apparmor-lp800826.patch
    0014-apparmor-lp979095.patch
    0015-apparmor-lp963756.patch
    0016-apparmor-lp968956.patch
    0017-apparmor-lp979135.patch
    0018-lp990931.patch
* Rename 0007-ubuntu-manpage-updates.patch to 0003
* debian/patches/0005-lp1019274.patch: add python3 support. Patch based
  on work from Dmitrijs Ledkovs. (LP: #1019274)
* debian/patches/0006-cap-epollwakeup.patch: adjust severity.db for
  CAP_EPOLLWAKEUP
* debian/patches/0007-setuptools-python3.patch: adjust setuptools-python3 to
  adjust scripts to use PYTHON if it is defined
* debian/patches/0008-libapparmor-layout-deb.patch: use --install-layout=deb
  when calling setup.py
* enable python3 in the build:
  - debian/rules:
    + use python3 as default PYTHON
    + build libapparmor with both python2 and python3
  - debian/control:
    + Build-Depends on python3-all-dev and python3
    + adjust apparmor to Depends on ${python3:Depends}
    + adjust apparmor-utils to Depends on ${python3:Depends}
    + add python3-libapparmor package
  - add debian/python3-libapparmor.install
  - debian/python-libapparmor.install: adjust to use python2 and
    dist-packages
* debian/patches/0009-lp1003856.patch: update ubuntu-browsers.d/java for
  IcedTea 7 (LP: #1003856)
* debian/patches/0010-lp972367.patch: allow software center to work again
  from browsers (LP: #972367)
* debian/patches/0011-lp1013887.patch: let sanitized helper work with
  /usr/local. Patch based on work by Reuben Thomas. (LP: #1013887)
* debian/patches/0012-lp964510.patch: allow Google Chrome and
  chromium-browser to work under sanitized helper (LP: #964510)
* debian/patches/0013-lp987578.patch: ubuntu-integration does not work
  properly with exo-open. Fix thanks to Mark Ramsell (LP: #987578)
* debian/patches/0014-lp933440.patch: update skype example profile to work
  with latest skype. Based on work by Ivan Frederiks (LP: #933440)

30. By Clint Byrum

debian/debhelper/postrm.apparmor: do not delete local files if main
conffile still exists since it probably means it is owned by a
new/different package. (LP: #986892)

29. By Jamie Strandboge

* Fix FTBFS (LP: #1000055). Patch thanks to Steve Beattie.
  - debian/control: Build-Depends on texlive-latex-recommended
  - debian/rules: add V=1 for 'make' and 'make check' when building the
    parser
* debian/patches/0018-lp990931.patch: adjust path for thunderbird to include
  non-versioned path
  - LP: #990931

28. By Steve Beattie

[ Jamie Strandboge ]
* debian/patches/0007-ubuntu-manpage-updates.patch: update apparmor(5)
  to describe Ubuntu's two-stage policy load and how to add utilize it
  when developing policy (LP: #974089)

[ Serge Hallyn ]
* debian/apparmor.init: do nothing in a container. This can be
  removed once stacked profiles are supported and used by lxc.
  (LP: #978297)

[ Steve Beattie ]
* debian/patches/0008-apparmor-lp963756.patch: Fix permission mapping
  for change_profile onexec (LP: #963756)
* debian/patches/0009-apparmor-lp959560-part1.patch,
  debian/patches/0010-apparmor-lp959560-part2.patch: Update the parser
  to support the 'in' keyword for value lists, and make mount
  operations aware of 'in' keyword so they can affect the flags build
  list (LP: #959560)
* debian/patches/0011-apparmor-lp872446.patch: fix logprof missing
  exec events in complain mode (LP: #872446)
* debian/patches/0012-apparmor-lp978584.patch: allow inet6 access in
  dovecot imap-login profile (LP: #978584)
* debian/patches/0013-apparmor-lp800826.patch: fix libapparmor
  log parsing library from dropping apparmor network events that
  contain ip addresses or ports in them (LP: #800826)
* debian/patches/0014-apparmor-lp979095.patch: document new mount rule
  syntax and usage in apparmor.d(5) manpage (LP: #979095)
* debian/patches/0015-apparmor-lp963756.patch: Fix change_onexec
  for profiles without attachment specification (LP: #963756,
  LP: #978038)
* debian/patches/0016-apparmor-lp968956.patch: Fix protocol error when
  loading policy to kernels without compat patches (LP: #968956)
* debian/patches/0017-apparmor-lp979135.patch: Fix change_profile to
  grant access to /proc/attr api (LP: #979135)

27. By Colin Watson

debian/control: Make dh-apparmor Multi-Arch: foreign, so that it can
satisfy cross-build-dependencies.

26. By Jamie Strandboge

* New upstream release. Fixes the following issues in support of LXC
  AppArmor support for beta-2:
  - Fix the return size of aa_getprocattr (LP: #962521)
  - Fix mnt_flags passed for remount
  - Fix dfa minimization around the nonmatching state
  - Factor all the permissions dump code into a single perms method
* debian/apparmor-utils.install:
  - AppArmor now installs apparmor.vim. Move it into place
  - install aa-exec
* debian/apparmor-utils.manpages: install aa-exec man page
* debian/patches/0003-add-aa-easyprof.patch: refresh for Makefile changes
* debian/patches/0005-clean-common-from-vim.patch: clean up 'common'
  symlink
* 0006-use-linux-capability-h.patch: Use linux/capability.h instead of
  sys/capability.h

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://qastaging/ubuntu/raring/apparmor
This branch contains Public information 
Everyone can see this information.

Subscribers