AppArmor: export known rlimit names/value mappings in securityfs Since the parser needs to know which rlimits are known to the kernel, export the list via a mask file in the "rlimit" subdirectory in the securityfs "features" directory. Signed-off-by: Kees Cook <kees@ubuntu.com> Signed-off-by: John Johansen <john.johansen@canonical.com>

commit: d384b0a1a35f87f0ad70c29518f98f922b1c15cb [log] [tgz]
author: Kees Cook <kees@ubuntu.com> Thu Jan 26 16:29:23 2012 -0800
committer: John Johansen <john.johansen@canonical.com> Mon Feb 27 11:38:19 2012 -0800
tree: 42560d316dffc636a424e7fa8173400723dcc4e7
parent: a9bf8e9fd561ba9ff1f0f2a1d96e439fcedaaaa4 [diff] [blame]
diff --git a/security/apparmor/apparmorfs.c b/security/apparmor/apparmorfs.c
index f9d0b50..16c15ec 100644
--- a/security/apparmor/apparmorfs.c
+++ b/security/apparmor/apparmorfs.c

@@ -25,6 +25,7 @@
 #include "include/audit.h"
 #include "include/context.h"
 #include "include/policy.h"
+#include "include/resource.h"
 
 /**
  * aa_simple_write_to_buffer - common routine for getting policy from user
@@ -201,6 +202,7 @@
 	AA_FS_DIR("domain",			aa_fs_entry_domain),
 	AA_FS_DIR("file",			aa_fs_entry_file),
 	AA_FS_FILE_U64("capability",		VFS_CAP_FLAGS_MASK),
+	AA_FS_DIR("rlimit",			aa_fs_entry_rlimit),
 	{ }
 };
commit	d384b0a1a35f87f0ad70c29518f98f922b1c15cb	[log] [tgz]
author	Kees Cook <kees@ubuntu.com>	Thu Jan 26 16:29:23 2012 -0800
committer	John Johansen <john.johansen@canonical.com>	Mon Feb 27 11:38:19 2012 -0800
tree	42560d316dffc636a424e7fa8173400723dcc4e7
parent	a9bf8e9fd561ba9ff1f0f2a1d96e439fcedaaaa4 [diff] [blame]