[apparmor] [Patch 0/6] Implement stacking support in the parser
Tyler Hicks
tyhicks at canonical.com
Fri Mar 4 08:16:35 UTC 2016
This patch set introduces AppArmor profile stacking support in the parser.
Profile stacking is the result of intersecting the set of permissions
between two or more profiles.
There are two ways to utilize stacking in a profile. The first is through
exec transition rules:
/bin/bash px -> &bash,
The second method is through a change_profile rule:
change_profile -> &bash,
This patch set is being sent without sufficient tests. A patch set of
parser and regression tests will be sent out in the near future.
Tyler
More information about the AppArmor
mailing list