This library contains functionality for parsing AppArmor files and creating rules and profiles.

Currently the crate is only meant to be used as a command line program. The only way to adjust the AppContext is by using command line arguments.

AppArmor Util

A command line tool that is meant to work with audit log files. Given an audit log file with entries for AppArmor profiles with the complain-flag, apparmor_util produces rules for all logged apparmor-events, that have either been DENIED or ALLOWED.

Roadmap

• Command line options for parsing specific directories and generate rules for a specific file type with pre-specified mode. (Is supposed to generate rules for directories like /usr/lib/ to put into /etc/apparmor.d/tunables/ for use in other profiles.)

TODO

• Unit tests for all associated functions and methods.

License

See COPYING for information about the license.

Contact

For any other question contact me at d445caf647f9d009387267a3@too-generic.dev.