[apparmor] PATCH [2/6] - Fix capability log parsing

Steve Beattie steve at nxnw.org
Fri Sep 10 00:45:16 BST 2010 

On Thu, Sep 09, 2010 at 04:42:29PM -0700, John Johansen wrote:
> NAK I think this will be just as confusing, this thing is a mess, and I
> tried to do what I did to leave a little documentation.  The following
> patches applies on top, of the previous set and converts the second
> {key_capability} into a comment for the time being, while documenting
> why its there and what needs to be done in the future.
> 
> 
> Index: libapparmor/src/scanner.l
> ===================================================================
> --- libapparmor.orig/src/scanner.l	2010-09-09 08:41:10.504193401 -0700
> +++ libapparmor/src/scanner.l	2010-09-09 16:15:43.854193511 -0700
> @@ -347,9 +348,21 @@
>  {key_fsuid}		{ return(TOK_KEY_FSUID); }
>  {key_ouid}		{ return(TOK_KEY_OUID); }
>  {key_comm}		{ return(TOK_KEY_COMM); }
> -{key_capability}	{ return(TOK_KEY_CAPABILITY); }
> + /* This key_capability entry is here to document, what should be.
> +  * currently the capability token is handled by the old set of rules above
> +  * it should be handled here, but there is no good way to combine them
> +  * that doesn't require more work than it is worth atm because of the
> +  * switch to sub_id in the old scanner rules.
> +  * The switch to sub_id causes the new rule set in the grammar to need to
> +  * accept a TOK_ID instead of TOK_DIGITS, which it should be.
> +  * once the old rules and old scanning is ripped out this scanner rule
> +  * should be activated and the corresponding rule in the grammar should
> +  * be updated to use TOK_DIGITS
> +  * {key_capability}	{ return(TOK_KEY_CAPABILITY); }
> +  */
>  {key_capname}		{ return(TOK_KEY_CAPNAME); }
>  {key_offset}		{ return(TOK_KEY_OFFSET); }
>  {key_target}		{ return(TOK_KEY_TARGET); }

ACKed for trunk and 2.5.1. Thanks.

-- 
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
Url : https://lists.ubuntu.com/archives/apparmor/attachments/20100909/8d9ec725/attachment.pgp

More information about the AppArmor mailing list