Linux repositories inspector

apparmor-easyprof - AppArmor easyprof profiling tool

apparmor-easyprof provides the aa-easyprof utility which is an easy to use interface for AppArmor policy generation. aa-easyprof supports the use of templates and policy groups to quickly profile an application.
Original maintainer
Homepagehttp://apparmor.net/
2.13.2
Debian iconDebian 10.0
Ubuntu iconUbuntu 19.04
Ubuntu iconUbuntu 19.10
2.12
Ubuntu iconUbuntu 18.04 LTS
Ubuntu iconUbuntu 18.10
2.11.0
Debian iconDebian 9.0
Ubuntu iconUbuntu 17.10
2.10.95
Ubuntu iconUbuntu 16.04 LTS
DistributionVersionSincePackageInstalledPackager
Debian iconDebian 10.0 buster/maindeb2.13.2-10Apr 0171.1 kiB103 kiB
Debian iconDebian 9.0 stretch/maindeb2.11.0-3+deb9u22018-03-1459.7 kiB92 kiB
Ubuntu iconUbuntu 17.10 artful/universedeb2.11.0-2ubuntu172017-11-109.85 kiB93 kiB
Ubuntu iconUbuntu 17.10 artful-updates/universedeb2.11.0-2ubuntu17.12018-02-089.86 kiB93 kiB
Ubuntu iconUbuntu 18.04 LTS bionic/universedeb2.12-4ubuntu52018-06-1910.1 kiB98 kiB
Ubuntu iconUbuntu 18.04 LTS bionic-security/universedeb2.12-4ubuntu5.1Jan 1210.1 kiB98 kiB
Ubuntu iconUbuntu 18.04 LTS bionic-updates/universedeb2.12-4ubuntu5.1Jan 1210.1 kiB98 kiB
Ubuntu iconUbuntu 18.10 cosmic/universedeb2.12-4ubuntu8Jan 1410.1 kiB98 kiB
Ubuntu iconUbuntu 19.04 disco/universedeb2.13.2-9ubuntu6Jun 1710.1 kiB103 kiB
Ubuntu iconUbuntu 19.04 disco-proposed/universedeb2.13.2-9ubuntu6.1Jun 2410.1 kiB103 kiB
Ubuntu iconUbuntu 19.10 eoan/universedeb2.13.2-9ubuntu7Jun 1710.1 kiB103 kiB
Ubuntu iconUbuntu 16.04 LTS xenial/maindeb2.10.95-0ubuntu22017-11-109.8 kiB81 kiB
Ubuntu iconUbuntu 16.04 LTS xenial-security/maindeb2.10.95-0ubuntu2.11Jun 179.8 kiB83 kiB
Ubuntu iconUbuntu 16.04 LTS xenial-updates/maindeb2.10.95-0ubuntu2.11Jun 179.8 kiB83 kiB

Manual pages

aa-easyprof(8)

aa-easyprof - AppArmor profile generation made easy.

Latest updates

Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 reintroduced

16:55
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 removed

14:23
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 reintroduced

08:50
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 removed

08:05
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 reintroduced

07:30
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 removed

03:45
Ubuntu 19.04 icon

Ubuntu 19.04 disco-proposed/universe: Version 2.13.2-9ubuntu6.1 introduced

Jun 24
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 reintroduced

Jun 20
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 removed

Jun 20
Ubuntu 19.10 icon

Ubuntu 19.10 eoan/universe: Version 2.13.2-9ubuntu7 introduced

Jun 17
Ubuntu 19.04 icon

Ubuntu 19.04 disco/universe: Updated from 2.13.2-9ubuntu5 to 2.13.2-9ubuntu6

Jun 17
Ubuntu 16.04 LTS icon

Ubuntu 16.04 LTS xenial-updates/main: Updated from 2.10.95-0ubuntu2.10 to 2.10.95-0ubuntu2.11

Jun 17
Ubuntu 16.04 LTS icon

Ubuntu 16.04 LTS xenial-security/main: Updated from 2.10.95-0ubuntu2.10 to 2.10.95-0ubuntu2.11

Jun 17
Ubuntu 19.04 icon

Ubuntu 19.04 disco/universe: Updated from 2.13.2-9ubuntu4 to 2.13.2-9ubuntu5

Apr 03
Ubuntu 19.04 icon

Ubuntu 19.04 disco-proposed/universe: Version 2.13.2-9ubuntu5 removed

Apr 03
Ubuntu 19.04 icon

Ubuntu 19.04 disco-proposed/universe: Updated from 2.13.2-9ubuntu4 to 2.13.2-9ubuntu5

Apr 02
Ubuntu 19.04 icon

Ubuntu 19.04 disco-proposed/universe: Version 2.13.2-9ubuntu4 reintroduced

Apr 02
Ubuntu 19.04 icon

Ubuntu 19.04 disco/universe: Updated from 2.12-4ubuntu10 to 2.13.2-9ubuntu4

Apr 02
Ubuntu 19.04 icon

Ubuntu 19.04 disco-proposed/universe: Version 2.13.2-9ubuntu4 removed

Apr 02
Debian 10.0 icon

Debian 10.0 buster/main: Updated from 2.13.2-9 to 2.13.2-10

Apr 01
  • Don't load AppArmor policy when running in a Debian Live environment that uses overlayfs (Closes: #922378).
    Rationale: the storage stack set up by live-boot with overlayfs is not supported by our AppArmor policy at the moment, resulting in breakage of confined software such as Evince and LibreOffice.
  • Ship nvidia_modprobe in enforce mode (Closes: #923273).
    • Rationale: as explained by Seth Arnold <> on #923273#32, profiles in complain mode can chew up essentially unlimited amounts of non-swappable kernel memory and huge amounts of IO bandwidth logging ALLOWED messages, which can in turn use large amounts of storage. This is why Ubuntu has applied this change already for their upcoming release.
    • Scope of this change: in Buster, this profile is used in one single place — the usr.lib.libreoffice.program.soffice.bin profile — for which it was developed and tested in the first place. So the risk and potential problematic impact of this change seems pretty low.
  • Cherry-pick the most important and non-invasive fixes from the upstream apparmor-2.13 maintenance branch:
    • base abstraction: allow mr on *.so* in common library paths,
      1. e. don't assume all common libraries' name starts with "lib".
      At the very least, this fixes Qt5 applications under some VirtualBox graphics configuration, where otherwise they would not start at all (Closes: Tails#16414).
      Upstream commits: 8dff7dc, 08f9d16
    • Fix 2 segfaults spotted upstream while writing automated tests for the multicache support (upstream MR!348):

      · in overlaydirat_for_each, segfault caused by repeatedly freeing

      the same memory area;

      · when loading policy cache files, due to incorrect size passed

      to qsort().

      Upstream commits: 5704fba, 01aec04

Related packages

apparmor - Mandatory Access Control (MAC) using Linux Security Module (LSM)
apparmor-easyprof-ubuntu - AppArmor easyprof templates for Ubuntu
⇧ Top