Fix the parser so it checks for the presence of the network feature in the

compatibility interface. Previously it was assuming that if the compatibility interface was present that network rules where also present, this is not necessarily true and causes apparmor to break when only the compatibility patch is applied. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com>
2025-08-30 22:05:27 +00:00 · 2012-07-01 01:36:37 -07:00
parent a465a211c2
commit 3d4a98bed9
1 changed files with 5 additions and 0 deletions
--- a/parser/parser_main.c
+++ b/parser/parser_main.c
@@ -873,6 +873,11 @@ static void get_flags_string(char **flags, char *flags_file) {
 //fprintf(stderr, "flags string: %s\n", flags_string);
 //fprintf(stderr, "changehat %d\n", flag_changehat_version);
 	}
+	if (strstr(flags_string, "network"))
+		kernel_supports_network = 1;
+	else
+		kernel_supports_network = 0;
+
 	return;

 fail: