[apparmor] [patch 10/26] add label class to the policydb
Seth Arnold
seth.arnold at canonical.com
Thu Apr 17 06:02:55 UTC 2014
On Tue, Apr 15, 2014 at 10:22:17AM -0700, john.johansen at canonical.com wrote:
> The label class is used to lookup object permissions based off of label
> alone when the labeling is not path dependent.
>
> Some rules will not generate label entries, some will generate only
> label entries and some will generate both label and path entries.
> This is left to the particular rule encoding.
>
> Signed-off-by: John Johansen <john.johansen at canonical.com>
> Acked-by: Steve Beattie <steve at nxnw.org>
Acked-by: Seth Arnold <seth.arnold at canonical.com>
Thanks
>
> ---
> parser/policydb.h | 3 ++-
> 1 file changed, 2 insertions(+), 1 deletion(-)
>
> --- 2.9-test.orig/parser/policydb.h
> +++ 2.9-test/parser/policydb.h
> @@ -32,8 +32,9 @@
> #define AA_CLASS_NS_DOMAIN 8
> #define AA_CLASS_PTRACE 9
>
> -#define AA_CLASS_ENV 16
> +#define AA_CLASS_LABEL 16
>
> +/* defined in libapparmor's apparmor.h #define AA_CLASS_DBUS 32 */
> #define AA_CLASS_X 33
>
> #endif /* __AA_POLICYDB_H */
>
>
> --
> AppArmor mailing list
> AppArmor at lists.ubuntu.com
> Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20140416/ce01add4/attachment-0001.pgp>
More information about the AppArmor
mailing list