[apparmor] [PATCH] local site-specific changes
Kees Cook
kees at ubuntu.com
Fri Aug 13 16:24:22 BST 2010
On Fri, Aug 13, 2010 at 08:13:36AM -0700, Steve Beattie wrote:
> I'll close the bug then, though we still ought to fix it so that the
> parser is able to detect updated includes and regenerate policy only
> where appropriate on a 'restart'.
Yes, absolutely. John has a plan for this, but neither of us had time yet
to implement it (basically, create a new format for the cache files so that
the cache-loader can quickly validate the stored list of "source files"
before shoving the cache into the kernel).
--
Kees Cook
Ubuntu Security Team
More information about the AppArmor
mailing list