[packages/apparmor-parser.git] / apparmor-parser-init-args.patch

This patch adds a variable AA_PARSER_ARGS to subdomain.conf, and passes
those arguments to relevant invocations of apparmor_parser.
---
 parser/rc.apparmor.functions |    9 +++++----
 parser/subdomain.conf        |    6 ++++++
 2 files changed, 11 insertions(+), 4 deletions(-)

Index: trunk-forge/parser/rc.apparmor.functions
===================================================================
--- trunk-forge.orig/parser/rc.apparmor.functions
+++ trunk-forge/parser/rc.apparmor.functions
@@ -50,6 +50,7 @@ fi
 SUBDOMAIN_MODULE_PANIC="warn"
 SUBDOMAIN_ENABLE_OWLSM="no"
 APPARMOR_ENABLE_AAEVENTD="no"
+AA_PARSER_ARGS=
 
 if [ -f "${APPARMOR_CONF}" ] ; then
 	#parse the conf file to see what we should do
@@ -106,11 +107,11 @@ parse_profiles() {
 	# get parser arg
 	case "$1" in
 		load)
-			PARSER_ARGS="--add"
+			PARSER_ACTION="--add"
 			PARSER_MSG="Loading AppArmor profiles "
 			;;
 		reload)
-			PARSER_ARGS="--replace"
+			PARSER_ACTION="--replace"
 			PARSER_MSG="Reloading AppArmor profiles "
 			;;
 		*)
@@ -151,7 +152,7 @@ parse_profiles() {
 			logger -t "AppArmor(init)" -p daemon.warn "Skipping profile $profile"
 			STATUS=2
 		elif [ -f "${profile}" ] ; then
-			$PARSER $ABSTRACTIONS $PARSER_ARGS "$profile" > /dev/null
+			$PARSER $ABSTRACTIONS $PARSER_ACTION ${AA_PARSER_ARGS} "$profile" > /dev/null
 			if [ $? -ne 0 ]; then
 				echo " Profile $profile failed to load"
 				STATUS=1
@@ -183,7 +184,7 @@ profiles_names_list() {
 
 	for profile in $PROFILE_DIR/*; do
 	        if ! skip_profile "${profile}" && [ -f "${profile}" ] ; then
-			LIST_ADD=$($PARSER $ABSTRACTIONS -N "$profile" | grep -v '\^')
+			LIST_ADD=$($PARSER $ABSTRACTIONS ${AA_PARSER_ARGS} -N "$profile" | grep -v '\^')
 			if [ $? -eq 0 ]; then
 				echo "$LIST_ADD" >>$TMPFILE
 			fi
Index: trunk-forge/parser/subdomain.conf
===================================================================
--- trunk-forge.orig/parser/subdomain.conf
+++ trunk-forge/parser/subdomain.conf
@@ -25,6 +25,12 @@ SUBDOMAIN_ENABLE_OWLSM="no"
 # Enable the AppArmor event daemon for reporting?
 APPARMOR_ENABLE_AAEVENTD="no"
 
+## Path: System/AppArmor
+## Description: Add arguments to the apparmor_parser binary
+## Type: String
+#
+AA_PARSER_ARGS=""
+
 #SUBDOMAIN_MODULE_PANIC=XXX
 #This option controls how subdomain behaves when the init script attempts
 #to load the SubDomain module and fails.  There are 4 options
Commit	Line	Data
35818bd8 AM	1	This patch adds a variable AA_PARSER_ARGS to subdomain.conf, and passes
	2	those arguments to relevant invocations of apparmor_parser.
	3	---
	4	parser/rc.apparmor.functions \| 9 +++++----
	5	parser/subdomain.conf \| 6 ++++++
	6	2 files changed, 11 insertions(+), 4 deletions(-)
	7
	8	Index: trunk-forge/parser/rc.apparmor.functions
	9	===================================================================
	10	--- trunk-forge.orig/parser/rc.apparmor.functions
	11	+++ trunk-forge/parser/rc.apparmor.functions
	12	@@ -50,6 +50,7 @@ fi
	13	SUBDOMAIN_MODULE_PANIC="warn"
	14	SUBDOMAIN_ENABLE_OWLSM="no"
	15	APPARMOR_ENABLE_AAEVENTD="no"
	16	+AA_PARSER_ARGS=
	17
	18	if [ -f "${APPARMOR_CONF}" ] ; then
	19	#parse the conf file to see what we should do
	20	@@ -106,11 +107,11 @@ parse_profiles() {
	21	# get parser arg
	22	case "$1" in
	23	load)
	24	- PARSER_ARGS="--add"
	25	+ PARSER_ACTION="--add"
	26	PARSER_MSG="Loading AppArmor profiles "
	27	;;
	28	reload)
	29	- PARSER_ARGS="--replace"
	30	+ PARSER_ACTION="--replace"
	31	PARSER_MSG="Reloading AppArmor profiles "
	32	;;
	33	*)
b9991a85	34	@@ -151,7 +152,7 @@ parse_profiles() {
35818bd8 AM	35	logger -t "AppArmor(init)" -p daemon.warn "Skipping profile $profile"
	36	STATUS=2
	37	elif [ -f "${profile}" ] ; then
	38	- $PARSER $ABSTRACTIONS $PARSER_ARGS "$profile" > /dev/null
	39	+ $PARSER $ABSTRACTIONS $PARSER_ACTION ${AA_PARSER_ARGS} "$profile" > /dev/null
	40	if [ $? -ne 0 ]; then
	41	echo " Profile $profile failed to load"
	42	STATUS=1
b9991a85	43	@@ -183,7 +184,7 @@ profiles_names_list() {
	44
	45	for profile in $PROFILE_DIR/*; do
	46	if ! skip_profile "${profile}" && [ -f "${profile}" ] ; then
35818bd8 AM	47	- LIST_ADD=$($PARSER $ABSTRACTIONS -N "$profile" \| grep -v '\^')
	48	+ LIST_ADD=$($PARSER $ABSTRACTIONS ${AA_PARSER_ARGS} -N "$profile" \| grep -v '\^')
	49	if [ $? -eq 0 ]; then
	50	echo "$LIST_ADD" >>$TMPFILE
	51	fi
	52	Index: trunk-forge/parser/subdomain.conf
	53	===================================================================
	54	--- trunk-forge.orig/parser/subdomain.conf
	55	+++ trunk-forge/parser/subdomain.conf
	56	@@ -25,6 +25,12 @@ SUBDOMAIN_ENABLE_OWLSM="no"
	57	# Enable the AppArmor event daemon for reporting?
	58	APPARMOR_ENABLE_AAEVENTD="no"
	59
	60	+## Path: System/AppArmor
	61	+## Description: Add arguments to the apparmor_parser binary
	62	+## Type: String
	63	+#
	64	+AA_PARSER_ARGS=""
	65	+
	66	#SUBDOMAIN_MODULE_PANIC=XXX
	67	#This option controls how subdomain behaves when the init script attempts
	68	#to load the SubDomain module and fails. There are 4 options