[apparmor] [PATCH 2/3] Extend the information dumped by -D rule-exprs to include permissions

[John Johansen]

Signed-off-by: John Johansen <john.johansen at canonical.com>
---
 parser/libapparmor_re/aare_rules.cc |    7 ++++++-
 1 files changed, 6 insertions(+), 1 deletions(-)

diff --git a/parser/libapparmor_re/aare_rules.cc b/parser/libapparmor_re/aare_rules.cc
index e78967a..d216a48 100644
--- a/parser/libapparmor_re/aare_rules.cc
+++ b/parser/libapparmor_re/aare_rules.cc
@@ -98,6 +98,7 @@ extern "C" int aare_add_rule_vec(aare_ruleset_t *rules, int deny,
 {
 	Node *tree = NULL, *accept;
 	int exact_match;
+	uint32_t allow = perms;
 
 	assert(perms != 0);
 
@@ -220,7 +221,11 @@ extern "C" int aare_add_rule_vec(aare_ruleset_t *rules, int deny,
 		}
 		cerr << "  ->  ";
 		tree->dump(cerr);
-		cerr << "\n\n";
+		if (deny)
+			cerr << " deny";
+		cerr << " (" << hex << allow <<"/" << audit << dec << ")";
+		accept->dump(cerr);
+ 		cerr << "\n\n";
 	}
 
 	if (rules->root)
-- 
1.7.9