[apparmor] [PATCH 2/2] Default profiles to be chroot relative
Kees Cook
kees at ubuntu.com
Thu Feb 16 20:25:30 UTC 2012
On Thu, Feb 16, 2012 at 08:26:10AM -0800, John Johansen wrote:
> Due to changes in path looks and the work going forward default profiles
> to resolve relative to the chroot instead of the namespace.
>
> This will only affect profiles that are used on tasks within a chroot.
> For now it will be possible to get the old default namespace relative
> behavior by passing the namespace_relative flag to the profile
>
> eg.
> profile /example (namespace_relative) { .. }
>
> Signed-off-by: John Johansen <john.johansen at canonical.com>
Acked-by: Kees Cook <kees at ubuntu.com>
--
Kees Cook
More information about the AppArmor
mailing list