[apparmor] [patch 21/26] change syntax of ptrace target
Steve Beattie
steve at nxnw.org
Wed Apr 23 19:42:01 UTC 2014
On Tue, Apr 22, 2014 at 05:06:39PM -0700, Seth Arnold wrote:
> On Tue, Apr 15, 2014 at 10:22:28AM -0700, john.johansen at canonical.com wrote:
> > change from
> > ptrace /foo,
> >
> > to
> > ptrace peer=/foo,
> >
> > Signed-off-by: John Johansen <john.johansen at canonical.com>
> >
>
> What happens in the event of a rule like this?
>
> ptrace peer=foo peer=bar peer=baz,
>
> It looks like each of foo, bar, and baz would be assigned to peer_label in
> turn.
move_conditional_value() checks to see if the option ('peer' in this
case) has already been assigned to.
You can see that this generates an error as expected with the newly
added language test parser/tst/simple_tests/ptrace/bad_04.sd in
commit 2486.
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20140423/c64016a5/attachment.pgp>
More information about the AppArmor
mailing list