summaryrefslogtreecommitdiffstats
path: root/security/apparmor/include/apparmorfs.h
diff options
context:
space:
mode:
authorJohn Johansen2017-01-16 09:42:58 +0100
committerJohn Johansen2017-01-16 10:18:44 +0100
commitb7fd2c0340eacbee892425e9007647568b7f2a3c (patch)
tree4bb2325e9366bba1c31d91b6c2364766d47e9e34 /security/apparmor/include/apparmorfs.h
parentapparmor: pass the subject profile into profile replace/remove (diff)
downloadkernel-qcow2-linux-b7fd2c0340eacbee892425e9007647568b7f2a3c.tar.gz
kernel-qcow2-linux-b7fd2c0340eacbee892425e9007647568b7f2a3c.tar.xz
kernel-qcow2-linux-b7fd2c0340eacbee892425e9007647568b7f2a3c.zip
apparmor: add per policy ns .load, .replace, .remove interface files
Having per policy ns interface files helps with containers restoring policy. Signed-off-by: John Johansen <john.johansen@canonical.com>
Diffstat (limited to 'security/apparmor/include/apparmorfs.h')
-rw-r--r--security/apparmor/include/apparmorfs.h6
1 files changed, 6 insertions, 0 deletions
diff --git a/security/apparmor/include/apparmorfs.h b/security/apparmor/include/apparmorfs.h
index a593e75b3b03..120a798b5bb0 100644
--- a/security/apparmor/include/apparmorfs.h
+++ b/security/apparmor/include/apparmorfs.h
@@ -71,6 +71,9 @@ enum aafs_ns_type {
AAFS_NS_PROFS,
AAFS_NS_NS,
AAFS_NS_RAW_DATA,
+ AAFS_NS_LOAD,
+ AAFS_NS_REPLACE,
+ AAFS_NS_REMOVE,
AAFS_NS_COUNT,
AAFS_NS_MAX_COUNT,
AAFS_NS_SIZE,
@@ -96,6 +99,9 @@ enum aafs_prof_type {
#define ns_subns_dir(X) ((X)->dents[AAFS_NS_NS])
#define ns_subprofs_dir(X) ((X)->dents[AAFS_NS_PROFS])
#define ns_subdata_dir(X) ((X)->dents[AAFS_NS_RAW_DATA])
+#define ns_subload(X) ((X)->dents[AAFS_NS_LOAD])
+#define ns_subreplace(X) ((X)->dents[AAFS_NS_REPLACE])
+#define ns_subremove(X) ((X)->dents[AAFS_NS_REMOVE])
#define prof_dir(X) ((X)->dents[AAFS_PROF_DIR])
#define prof_child_dir(X) ((X)->dents[AAFS_PROF_PROFS])
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-06-13 09:20:43 +0200