In preparation for AppArmor's support of the SO_PEERSEC socket option (which
allows a process to query the confinement information of a task on the other
end of a socket), the existing libappamor getpeercon API needs some
improvements.
John provided a couple bug fixes and I've added mode parsing to the getpeercon
functions, updated the appropriate man page, and bumped our library version.
John Johansen (2):
libapparmor: Safeguard aa_getpeercon buffer reallocation
libapparmor: fix return value of aa_getpeercon_raw
Tyler Hicks (5):
libapparmor: Move mode parsing into separate function
libapparmor: Parse mode from confinement string in getpeercon functions
libapparmor: Make aa_getpeercon_raw() similar to aa_getprocattr_raw()
libapparmor: Update aa_getcon man page to reflect getpeercon changes
libapparmor: Update library version info
libraries/libapparmor/doc/aa_getcon.pod | 15 +++++++++--
libraries/libapparmor/src/Makefile.am | 4 +--
libraries/libapparmor/src/apparmor.h | 4 +--
libraries/libapparmor/src/kernel_interface.c | 92
+++++++++++++++++++++++++++++++++++++++++-------------------------
libraries/libapparmor/swig/SWIG/libapparmor.i | 4 +--
5 files changed, 77 insertions(+), 42 deletions(-)
--
AppArmor mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/apparmor
