AppArmor: core policy routines

Browse Source

The basic routines and defines for AppArmor policy.  AppArmor policy
is defined by a few basic components.
      profiles - the basic unit of confinement contain all the information
                 to enforce policy on a task

                 Profiles tend to be named after an executable that they
                 will attach to but this is not required.
      namespaces - a container for a set of profiles that will be used
                 during attachment and transitions between profiles.
      sids - which provide a unique id for each profile

Signed-off-by: John Johansen <john.johansen@canonical.com>
Signed-off-by: James Morris <jmorris@namei.org>

...

This commit is contained in:

John Johansen

2010-07-29 14:48:00 -07:00

committed by James Morris

parent 736ec752d9

commit c88d4c7b04

4 changed files with 1568 additions and 0 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download Patch File Download Diff File Expand all files Collapse all files

1184

security/apparmor/policy.c Normal file

File diff suppressed because it is too large Load Diff