aboutsummaryrefslogtreecommitdiffstats
path: root/security/apparmor/include/policy_unpack.h
Commit message (Collapse)AuthorAge
* apparmor: allow setting any profile into the unconfined stateJohn Johansen2013-08-14
| | | | | | | | Allow emulating the default profile behavior from boot, by allowing loading of a profile in the unconfined state into a new NS. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com>
* apparmor: provide base for multiple profiles to be replaced at onceJohn Johansen2013-08-14
| | | | | | | | | | | previously profiles had to be loaded one at a time, which could result in cases where a replacement of a set would partially succeed, and then fail resulting in inconsistent policy. Allow multiple profiles to replaced "atomically" so that the replacement either succeeds or fails for the entire set of profiles. Signed-off-by: John Johansen <john.johansen@canonical.com>
* AppArmor: policy routines for loading and unpacking policyJohn Johansen2010-08-02
AppArmor policy is loaded in a platform independent flattened binary stream. Verify and unpack the data converting it to the internal format needed for enforcement. Signed-off-by: John Johansen <john.johansen@canonical.com> Signed-off-by: James Morris <jmorris@namei.org>
generated by cgit v1.2.2 (git 2.25.0) at 2025-08-10 15:14:17 -0400