[apparmor] [PATCH 4/5] And the ability to specify the name and attachment of the profile separately. It does not allow for the attachment specification to begin with a variable however since variables in profile names is not currently support this shouldn't be and issue.

[Steve Beattie]

On Tue, Nov 23, 2010 at 01:18:54AM -0800, John Johansen wrote:
> Add the ability to specify the name and attachment of the profile
> separately. It does not allow for the attachment specification to
> begin with a variable however since variables in profile names is not
> currently support this shouldn't be and issue.

The reason that variables are not supported in profile names is that
it would essentially result in multiple profile names attached to a
single profile, and as you've pointed out, there are some difficulties
in supporting that.

> The format of the naming follows the basic guide of the name coming
> before the attachment but after profile namespace.

Why after the namespace? Why is the namespace not integral to the name?

What are you trying to solve or drive toward with this?

> profile default /** { }
> profile :namespace: foo /bar { }
> profile /foo//bar /** { }
> profile /foo {
>    profile named /** { }
> }
> 
> Signed-off-by: John Johansen <john.johansen at canonical.com>
> ---
>  parser/parser.h        |    1 +
>  parser/parser_alias.c  |   10 ++++++++--
>  parser/parser_policy.c |    2 ++
>  parser/parser_regex.c  |    7 +++++--
>  parser/parser_yacc.y   |   18 ++++++++++++++----
>  5 files changed, 30 insertions(+), 8 deletions(-)
> 

-- 
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/apparmor/attachments/20101129/6fb61f7e/attachment.pgp