Re: [apparmor] [patch] aa-genprof: ask about profiles in extra dir (again)

On Wed, Jun 01, 2016 at 02:07:10AM +0200, Christian Boltz wrote: > Hello, > > thanks to reading the wrong directory in read_inactive_profiles() > (profile_dir instead of extra_profile_dir), aa-genprof never asked about > using a profile from the extra_profile_dir. > > Sounds like an easy fix,

Re: [apparmor] [patch] aa-genprof: ask about profiles in extra dir (again)

On 05/31/2016 05:07 PM, Christian Boltz wrote: > Hello, > > thanks to reading the wrong directory in read_inactive_profiles() > (profile_dir instead of extra_profile_dir), aa-genprof never asked about > using a profile from the extra_profile_dir. > > Sounds like an easy fix, right? ;-) > >

[apparmor] [patch] aa-genprof: ask about profiles in extra dir (again)

Hello, thanks to reading the wrong directory in read_inactive_profiles() (profile_dir instead of extra_profile_dir), aa-genprof never asked about using a profile from the extra_profile_dir. Sounds like an easy fix, right? ;-) After fixing this (last chunk), several other errors popped up, one

Re: [apparmor] [PATCH v1.3 05/11] parser: Allow change_profile rules to accept an exec mode modifier

On 05/31/2016 01:17 PM, Tyler Hicks wrote: > https://launchpad.net/bugs/1584069 > > This patch allows policy authors to specify how exec transitions should > be handled with respect to setting AT_SECURE in the new process' > auxiliary vector and, ultimately, having libc scrub (or not scrub) the >

[apparmor] [PATCH v1.3 05/11] parser: Allow change_profile rules to accept an exec mode modifier

https://launchpad.net/bugs/1584069 This patch allows policy authors to specify how exec transitions should be handled with respect to setting AT_SECURE in the new process' auxiliary vector and, ultimately, having libc scrub (or not scrub) the environment. An exec mode of 'safe' means that the

Re: [apparmor] [PATCH v1.2 05/11] parser: Allow change_profile rules to accept an exec mode modifier

On 05/31/2016 07:52 AM, Tyler Hicks wrote: > https://launchpad.net/bugs/1584069 > > This patch allows policy authors to specify how exec transitions should > be handled with respect to setting AT_SECURE in the new process' > auxiliary vector and, ultimately, having libc scrub (or not scrub) the >

Re: [apparmor] [PATCH v1.1 05/11] parser: Allow change_profile rules to accept an exec mode modifier

My mail client decided to sign and encrypt my previous reply. See what I wrote below. Tyler On 05/31/2016 09:46 AM, Tyler Hicks wrote: > On 05/31/2016 05:08 AM, John Johansen wrote: >> On 05/28/2016 09:42 AM, Tyler Hicks wrote: >>> https://launchpad.net/bugs/1584069 >>> >>> This patch allows

[apparmor] [PATCH v1.2 05/11] parser: Allow change_profile rules to accept an exec mode modifier

https://launchpad.net/bugs/1584069 This patch allows policy authors to specify how exec transitions should be handled with respect to setting AT_SECURE in the new process' auxiliary vector and, ultimately, having libc scrub (or not scrub) the environment. An exec mode of 'safe' means that the

Re: [apparmor] [PATCH v1.1 05/11] parser: Allow change_profile rules to accept an exec mode modifier

binvstqIDBHNU.bin Description: PGP/MIME version identification encrypted.asc Description: OpenPGP encrypted message -- AppArmor mailing list AppArmor@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor