[apparmor] [PATCH 0/4] Add aa-easyprof command line utility

Jamie Strandboge jamie at canonical.com
Thu Mar 22 22:09:05 UTC 2012 

On Tue, 2012-02-07 at 08:50 -0600, Jamie Strandboge wrote:
> This patchset is to accomplish the code portion of the
> security-p-app-isolation blueprint. aa-easyprof is a standalone CLI
> application which can also be imported into developer SDKs. From the man
> page:
> 
> "aa-easyprof provides an easy to use interface for AppArmor policy
> generation. aa-easyprof supports the use of templates and policy groups
> to quickly profile an application. Please note that while this tool can
> help with policy generation, its utility is dependent on the quality of
> the templates, policy groups and abstractions used. Also, this tool may
> create policy which is less restricted than creating policy by hand or
> with aa-genprof and aa-logprof."
> 
> In essence, aa-easyprof takes a different view on policy generation and
> is useful when you already know how the application should behave and
> want to create an initial policy based on this. As such, one can create
> a template and any supporting policy groups (policy groups are similar
> to abstractions or the old-style program-chunks in that they are simply
> groupings of policy rules) then use aa-easyprof to generate a policy.
> The CLI tool dumps the resulting policy to stdout and requires no
> privileges.
> 
> This patchset is broken into 4 parts:

Refreshed for latest Makefile changes. The patch is no longer broken up,
but I can if desired.

-- 
Jamie Strandboge             | http://www.canonical.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0003-add-aa-easyprof.patch
Type: text/x-patch
Size: 75061 bytes
Desc: not available
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20120322/796430e5/attachment-0001.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20120322/796430e5/attachment-0001.pgp>

More information about the AppArmor mailing list