[apparmor] [patch] Don't store exec modes in transtions[]

[Christian Boltz]

Hello,

exec choices are stored in transitions[], but that's never used
(and I don't see a need for it), therefore stop storing it.


[ 73-exec-transitions.diff ]

=== modified file 'utils/apparmor/aa.py'
--- utils/apparmor/aa.py        2016-02-20 12:32:36 +0000
+++ utils/apparmor/aa.py        2016-02-21 13:50:24 +0000
@@ -1205,7 +1205,6 @@
                         context_new = context_new + '^%s' % hat
                     context_new = context_new + ' -> %s' % exec_target
 
-                    # ans_new = transitions.get(context_new, '')  # XXX ans meant here?
                     combinedmode = set()
                     combinedaudit = set()
                     ## Check return Value Consistency
@@ -1415,7 +1414,6 @@
                                         exec_mode = exec_mode - (apparmor.aamode.AA_EXEC_UNSAFE | AA_OTHER(apparmor.aamode.AA_EXEC_UNSAFE))
                                 else:
                                     ans = 'INVALID'
-                        transitions[context_new] = ans
 
                         regex_options = re.compile('CMD_(ix|px|cx|nx|pix|cix|nix)')
                         if regex_options.search(ans):



Regards,

Christian Boltz
-- 
> Ich moechte gern einige User die ihre Mails ueber einen Mailserver
> (sendmail bevorzugt, postfix auch moeglich) scannen.
Dafür reicht ein Kopierer. Hosen runter, User draufsetzen und "Copy"
drücken!   [> Ralf Thomas und Sandy Drobic in suse-linux]
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.ubuntu.com/archives/apparmor/attachments/20160221/a2c336f7/attachment.pgp>