On Sun, Jul 21, 2013 at 10:32:48PM -0700, John Johansen wrote:
> Remove use of AARE_DFA as the alternate pcre matching engine was removed
> years ago.
>
> Signed-off-by: John Johansen
Acked-by: Seth Arnold
Wow, keep these cleanups coming :)
Thanks
> ---
> parser/parser.h | 4 ---
On Sun, Jul 21, 2013 at 10:32:47PM -0700, John Johansen wrote:
> Refactor policydb entry processing so that post_process_policydb_ents is
> just a driver for rule specific routines.
>
> Signed-off-by: John Johansen
Acked-by: Seth Arnold
Thanks
> ---
> parser/parser_regex.c | 13 +++--
On Sun, Jul 21, 2013 at 10:32:46PM -0700, John Johansen wrote:
> let allow be used as a prefix in place of deny. Allow is the default
> and is implicit so it is not needed but some user keep tripping over
> it, and it makes the language more symmetric
>
>eg.
> /foo rw,
> allow /fo
On Sun, Jul 21, 2013 at 10:32:45PM -0700, John Johansen wrote:
> Signed-off-by: John Johansen
Wow, another awesome looking cleanup.
Some comments inline.
> ---
> parser/parser.h | 6 ++
> parser/parser_yacc.y | 191
> +--
> 2 files change
On 07/24/2013 02:35 PM, Steve Beattie wrote:
> On Wed, Jul 24, 2013 at 09:26:43AM -0700, John Johansen wrote:
>> So we have a binary (C based) version of aa-exec that just needs a little
>> more revision before we land it. One of the things we need to decide is
>> which package to put it in.
>>
>>
On Wed, Jul 24, 2013 at 09:26:43AM -0700, John Johansen wrote:
> So we have a binary (C based) version of aa-exec that just needs a little
> more revision before we land it. One of the things we need to decide is
> which package to put it in.
>
> We could modify the utils packaging to handle binar
On 07/24/2013 11:02 AM, Jamie Strandboge wrote:
> On 07/24/2013 11:26 AM, John Johansen wrote:
>> So we have a binary (C based) version of aa-exec that just needs a little
>> more revision before we land it. One of the things we need to decide is
>> which package to put it in.
>>
>> We could modify
On 07/23/2013 10:43 AM, Tyler Hicks wrote:
> One minor nitpick/question...
>
> On 2013-07-23 08:36:12, Steve Beattie wrote:
>> Subject: [parser patch] fix apparmor cache tempfile location to use passed
>> arg
>>
>> This patch fixes problems in the handling of both the final cache
>> name location
On Wed, Jul 24, 2013 at 09:26:43AM -0700, John Johansen wrote:
> So we have a binary (C based) version of aa-exec that just needs a little
> more revision before we land it. One of the things we need to decide is
> which package to put it in.
>
> We could modify the utils packaging to handle binar
On 07/24/2013 11:26 AM, John Johansen wrote:
> So we have a binary (C based) version of aa-exec that just needs a little
> more revision before we land it. One of the things we need to decide is
> which package to put it in.
>
> We could modify the utils packaging to handle binary and no arch, cre
So we have a binary (C based) version of aa-exec that just needs a little
more revision before we land it. One of the things we need to decide is
which package to put it in.
We could modify the utils packaging to handle binary and no arch, create
a new package for binary utils, or just move it int
Apologies, this was due to a typo in the profile name (ocpu_exec vs
ocpu-exec). But perhaps the error could have been more informative
(profile does not exists vs permission denied).
On Wed, Jul 24, 2013 at 1:43 PM, Jeroen Ooms wrote:
> I can't get the change_profile directive to work. I have two
I can't get the change_profile directive to work. I have two profiles
loaded, called ocpu-main and ocpu-exec. The ocpu_main profile should
allow to transition into the more restrictive ocpu-exec:
#include
profile ocpu-main {
#include
#include
change_profile -> ocpu-exec,
}
In addition, t
On Sun, Jul 21, 2013 at 10:32:44PM -0700, John Johansen wrote:
> - Make indenting consistent
> - Move common match + fn patterns into a single shared entry with mulitstate
> headers
> - add names table to convert lexer state #s to state names used in the code
> - Create/use macros for common patt
14 matches
Mail list logo
