mir/apparmor
2
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor synced 2025-09-02 07:15:18 +00:00
Code Issues Releases Wiki Activity

keep rlimit rules

Browse Source
This commit is contained in:
John Johansen
2008-04-18 20:56:41 +00:00
parent 715952ce0d
commit 03728a0155
1 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
utils/SubDomain.pm
View File

@@ -4256,6 +4256,14 @@ sub parse_profile_data {
my $to = $2; my $to = $2;
$profile_data->{$profile}{$hat}{alias}{$from} = $to; $profile_data->{$profile}{$hat}{alias}{$from} = $to;
} elsif (m/^\s*set\s+rlimit\s+(.+)\s+<=\s*(.+)\s*,(#.*)?$/) { # never do anything with rlimits just keep them
if (not $profile) {
die sprintf(gettext('%s contains syntax errors.'), $file) . "\n";
}
my $from = $1;
my $to = $2;
$profile_data->{$profile}{$hat}{rlimit}{$from} = $to;
} elsif (/^\s*(\$\{?[[:alpha:]][[:alnum:]_]*\}?)\s*=\s*(true|false)\s*(#.*)?$/i) { # boolean definition } elsif (/^\s*(\$\{?[[:alpha:]][[:alnum:]_]*\}?)\s*=\s*(true|false)\s*(#.*)?$/i) { # boolean definition
} elsif (/^\s*(@\{?[[:alpha:]][[:alnum:]_]+\}?)\s*\+=\s*(.+)\s*(#.*)?$/) { # variable additions } elsif (/^\s*(@\{?[[:alpha:]][[:alnum:]_]+\}?)\s*\+=\s*(.+)\s*(#.*)?$/) { # variable additions
@@ -4538,6 +4546,12 @@ sub writealiases ($) {
return write_pair($profile_data, 'alias', "alias ", " -> ", ","); return write_pair($profile_data, 'alias', "alias ", " -> ", ",");
} }
sub writerlimits ($) {
my $profile_data = shift;
return write_pair($profile_data, 'rlimit', "set rlimit ", " <= ", ",");
}
sub writenetdomain ($) { sub writenetdomain ($) {
my $profile_data = shift; my $profile_data = shift;
@@ -4598,6 +4612,7 @@ sub writepiece ($$$) {
push @data, writelinks($profile_data->{$name}); push @data, writelinks($profile_data->{$name});
push @data, writechange_profile($profile_data->{$name}); push @data, writechange_profile($profile_data->{$name});
push @data, writealiases($profile_data->{$name}); push @data, writealiases($profile_data->{$name});
push @data, writerlimits($profile_data->{$name});
push @data, writepaths($profile_data->{$name}); push @data, writepaths($profile_data->{$name});
push @data, "}"; push @data, "}";