lp://qastaging/ubuntu/quantal/apparmor
- Get this branch:
- bzr branch lp://qastaging/ubuntu/quantal/apparmor
Branch merges
Related bugs
Bug #933440: AppArmor profile (in enforce mode) breaks skype | Undecided | Confirmed | |
Bug #1045986: Ubuntu AppArmor policy is too lenient with shell scripts | Undecided | Confirmed |
Related blueprints
Branch information
- Owner:
- Ubuntu branches
- Status:
- Mature
Recent revisions
- 35. By Steve Beattie
-
[ Micah Gersten ]
* Allow /etc/vdpau_wrapper. cfg r and /var/lib/ xine/gxine. desktop r
in the multimedia browser abstraction (LP: #1057642)
- update profiles/apparmor. d/abstractions/ ubuntu- browsers. d/multimedia [ Steve Beattie ]
* debian/control: make libnotify-bin a Recommends rather than a
Depends for use in server environments (LP: #1061879)
* debian/patches/ 0020-coredump_ tests.patch: fix coredump regression
tests (LP: #1050430)
* debian/patches/ 0021-webapps_ abstraction. patch: add a few items
triggered by using and installing webapps in firefox (LP: #1056418)
* debian/patches/ 0022-aa- decode- stdin.patch: fix aa-decode to process
stdin correctly and decode encoded profiles names - 33. By Jamie Strandboge
-
* remove 0010-lp972367.patch and 0012-lp964510.patch which should have been
dropped in 2.8.0-0ubuntu1 since they are included upstream
* debian/patches/ 0001-add- chromium- browser. patch:
- add a couple of small accesses
- add a child profile for xdgsettings (LP: #1045986) - 32. By Jamie Strandboge
-
* 0015-fontconfig
.patch: update fonts abstraction for new fontconfig paths
* 0016-cap-block-suspend. patch: add CAP_BLOCK_SUSPEND to severity.db. In
the next version of AppArmor, this will replace 0006-cap-epollwakeup. patch
* 0017-gnome-poppler- data.patch: update gnome abstraction for poppler cMap
tables - 31. By Jamie Strandboge
-
* New upstream release
- Drop the following patches, now included upstream:
0003-add-aa- easyprof. patch
0005-clean-common- from-vim. patch
0006-use-linux- capability- h.patch
0008-apparmor- lp963756. patch
0009-apparmor- lp959560- part1.patch
0010-apparmor- lp959560- part2.patch
0011-apparmor- lp872446. patch
0012-apparmor- lp978584. patch
0013-apparmor- lp800826. patch
0014-apparmor- lp979095. patch
0015-apparmor- lp963756. patch
0016-apparmor- lp968956. patch
0017-apparmor- lp979135. patch
0018-lp990931. patch
* Rename 0007-ubuntu-manpage- updates. patch to 0003
* debian/patches/ 0005-lp1019274. patch: add python3 support. Patch based
on work from Dmitrijs Ledkovs. (LP: #1019274)
* debian/patches/ 0006-cap- epollwakeup. patch: adjust severity.db for
CAP_EPOLLWAKEUP
* debian/patches/ 0007-setuptools -python3. patch: adjust setuptools-python3 to
adjust scripts to use PYTHON if it is defined
* debian/patches/ 0008-libapparmo r-layout- deb.patch: use --install- layout= deb
when calling setup.py
* enable python3 in the build:
- debian/rules:
+ use python3 as default PYTHON
+ build libapparmor with both python2 and python3
- debian/control:
+ Build-Depends on python3-all-dev and python3
+ adjust apparmor to Depends on ${python3:Depends}
+ adjust apparmor-utils to Depends on ${python3:Depends}
+ add python3-libapparmor package
- add debian/python3- libapparmor. install
- debian/python- libapparmor. install: adjust to use python2 and
dist-packages
* debian/patches/ 0009-lp1003856. patch: update ubuntu- browsers. d/java for
IcedTea 7 (LP: #1003856)
* debian/patches/ 0010-lp972367. patch: allow software center to work again
from browsers (LP: #972367)
* debian/patches/ 0011-lp1013887. patch: let sanitized helper work with
/usr/local. Patch based on work by Reuben Thomas. (LP: #1013887)
* debian/patches/ 0012-lp964510. patch: allow Google Chrome and
chromium-browser to work under sanitized helper (LP: #964510)
* debian/patches/ 0013-lp987578. patch: ubuntu-integration does not work
properly with exo-open. Fix thanks to Mark Ramsell (LP: #987578)
* debian/patches/ 0014-lp933440. patch: update skype example profile to work
with latest skype. Based on work by Ivan Frederiks (LP: #933440) - 30. By Clint Byrum
-
debian/
debhelper/ postrm. apparmor: do not delete local files if main
conffile still exists since it probably means it is owned by a
new/different package. (LP: #986892) - 29. By Jamie Strandboge
-
* Fix FTBFS (LP: #1000055). Patch thanks to Steve Beattie.
- debian/control: Build-Depends on texlive-latex-recommend ed
- debian/rules: add V=1 for 'make' and 'make check' when building the
parser
* debian/patches/ 0018-lp990931. patch: adjust path for thunderbird to include
non-versioned path
- LP: #990931 - 28. By Steve Beattie
-
[ Jamie Strandboge ]
* debian/patches/ 0007-ubuntu- manpage- updates. patch: update apparmor(5)
to describe Ubuntu's two-stage policy load and how to add utilize it
when developing policy (LP: #974089)[ Serge Hallyn ]
* debian/apparmor. init: do nothing in a container. This can be
removed once stacked profiles are supported and used by lxc.
(LP: #978297)[ Steve Beattie ]
* debian/patches/ 0008-apparmor- lp963756. patch: Fix permission mapping
for change_profile onexec (LP: #963756)
* debian/patches/ 0009-apparmor- lp959560- part1.patch,
debian/patches/ 0010-apparmor- lp959560- part2.patch: Update the parser
to support the 'in' keyword for value lists, and make mount
operations aware of 'in' keyword so they can affect the flags build
list (LP: #959560)
* debian/patches/ 0011-apparmor- lp872446. patch: fix logprof missing
exec events in complain mode (LP: #872446)
* debian/patches/ 0012-apparmor- lp978584. patch: allow inet6 access in
dovecot imap-login profile (LP: #978584)
* debian/patches/ 0013-apparmor- lp800826. patch: fix libapparmor
log parsing library from dropping apparmor network events that
contain ip addresses or ports in them (LP: #800826)
* debian/patches/ 0014-apparmor- lp979095. patch: document new mount rule
syntax and usage in apparmor.d(5) manpage (LP: #979095)
* debian/patches/ 0015-apparmor- lp963756. patch: Fix change_onexec
for profiles without attachment specification (LP: #963756,
LP: #978038)
* debian/patches/ 0016-apparmor- lp968956. patch: Fix protocol error when
loading policy to kernels without compat patches (LP: #968956)
* debian/patches/ 0017-apparmor- lp979135. patch: Fix change_profile to
grant access to /proc/attr api (LP: #979135) - 27. By Colin Watson
-
debian/control: Make dh-apparmor Multi-Arch: foreign, so that it can
satisfy cross-build-dependencies. - 26. By Jamie Strandboge
-
* New upstream release. Fixes the following issues in support of LXC
AppArmor support for beta-2:
- Fix the return size of aa_getprocattr (LP: #962521)
- Fix mnt_flags passed for remount
- Fix dfa minimization around the nonmatching state
- Factor all the permissions dump code into a single perms method
* debian/apparmor- utils.install:
- AppArmor now installs apparmor.vim. Move it into place
- install aa-exec
* debian/apparmor- utils.manpages: install aa-exec man page
* debian/patches/ 0003-add- aa-easyprof. patch: refresh for Makefile changes
* debian/patches/ 0005-clean- common- from-vim. patch: clean up 'common'
symlink
* 0006-use-linux-capabilit y-h.patch: Use linux/capability.h instead of
sys/capability.h
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://qastaging/ubuntu/raring/apparmor