[apparmor] [patch 05/12] Make the af type protocol mappings available for use
Steve Beattie
steve at nxnw.org
Tue Aug 19 22:33:47 UTC 2014
On Tue, Aug 19, 2014 at 01:13:02AM -0700, Steve Beattie wrote:
> On Fri, Aug 15, 2014 at 12:20:40PM -0700, john.johansen at canonical.com wrote:
> > Signed-off-by: John Johansen <john.johansen at canonical.com>
> > Acked-by: Seth Arnold <seth.arnold at canonical.com>
>
> Modulo the issue Seth raised, getting the function prototype in the
> right commit, this is all fine — Acked-by: Steve Beattie <steve at nxnw.org>
>
> The point I raised earlier about nothing ever calling network_entry()
> (and now net_find_mapping()) with a non-NULL protocol argument still
> stands... is that a bug or intentional?
Ah, looking at the patch that adds af_unix support, which contains the
following in af_unix.cc:
+ } else if (strcmp(ent->name, "protocol") == 0) {
> + yyerror("socket rule: 'protocol' conditional is not > currently supported\n");
this seems to be intentional.
--
Steve Beattie
<sbeattie at ubuntu.com>
http://NxNW.org/~steve/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20140819/c16feb7f/attachment.pgp>
More information about the AppArmor
mailing list