Patch from jjohansen@suse.de

Fix debugging with CHANGE_PROFILE.
2025-03-04 08:24:42 +01:00 · 2007-07-27 20:25:59 +00:00 · 2007-07-27 20:25:59 +00:00 · 86e5ed3109
commit 86e5ed3109
parent 17ff3b0f58
3 changed files with 4 additions and 1 deletions
--- a/parser/immunix.h
+++ b/parser/immunix.h
@ -72,6 +72,7 @@ enum pattern_t {
 #define HAS_EXEC_UNCONSTRAINED(mode)	((mode) & AA_EXEC_UNCONSTRAINED)
 #define HAS_EXEC_MMAP(mode) 		((mode) & AA_EXEC_MMAP)
 #define HAS_EXEC_UNSAFE(mode) 		((mode) & AA_EXEC_UNSAFE)
+#define HAS_CHANGE_PROFILE(mode)	((mode) & AA_CHANGE_PROFILE)

 #define SINGLE_BIT_SET(X) (!((X) & ((X) - 1)))
 #define AA_EXEC_SINGLE_MODIFIER_SET(X) SINGLE_BIT_SET(((X) & AA_EXEC_MODIFIERS))
--- a/parser/libapparmor_re/regexp.y
+++ b/parser/libapparmor_re/regexp.y
@ -1495,7 +1495,7 @@ extern "C" void aare_delete_ruleset(aare_ruleset_t *rules)

 #define ACCUMULATING_FLAGS \
 	(AA_MAY_READ | AA_MAY_WRITE | AA_MAY_EXEC | \
-	 AA_MAY_LINK | AA_EXEC_MMAP)
+	 AA_MAY_LINK | AA_EXEC_MMAP | AA_CHANGE_PROFILE)

 /**
 * Compute the permission flags that this state corresponds to. If we
--- a/parser/parser_misc.c
+++ b/parser/parser_misc.c
@ -591,6 +591,8 @@ void debug_cod_entries(struct cod_entry *list)
 			printf("%c", COD_MMAP_CHAR);
 		if (HAS_MAY_EXEC(item->mode))
 			printf("%c", COD_EXEC_CHAR);
+		if (HAS_CHANGE_PROFILE(item->mode))
+			printf(" change_profile");

 		if (item->name)
 			printf("\tName:\t(%s)\n", item->name);