[apparmor] [PATCH 11/27] apparmor: move perm defines into policy_unpack
John Johansen
john.johansen at canonical.com
Wed Nov 21 17:18:09 UTC 2012
On 11/21/2012 08:23 AM, Steve Beattie wrote:
> On Tue, Nov 20, 2012 at 08:39:51PM -0800, John Johansen wrote:
>> Signed-off-by: John Johansen <john.johansen at canonical.com>
> Acked-by: Steve Beattie <sbeattie at ubuntu.com>
>
> As an aside, what's the intent behind the difference between the two?
>
Ah sorry, this is some of the work to abstract out the match code so
its not tightly tied to apparmor. I dropped the follow on patches,
which also convert the dfa to a more cacheline friendly internal
format, for now.
Basically the separation of match and perms will allow us to offer
up the match code as a general kernel matching fn at somepoint.
>> ---
>> security/apparmor/include/match.h | 2 --
>> security/apparmor/policy_unpack.c | 3 +++
>> 2 files changed, 3 insertions(+), 2 deletions(-)
>>
>> diff --git a/security/apparmor/include/match.h b/security/apparmor/include/match.h
>> index bbbf56f..001c43a 100644
>> --- a/security/apparmor/include/match.h
>> +++ b/security/apparmor/include/match.h
>
>
>
More information about the AppArmor
mailing list