Re: [PATCH] TOMOYO: Add recursive directory matching operatorsupport.

From: Tetsuo Handa
Date: Wed Nov 25 2009 - 09:59:29 EST

Next message: Oleg Nesterov: "Re: [RFC,PATCH 14/14] utrace core"
Previous message: Maxim Levitsky: "[PATCH] Port ricoh_mmc from driver to pci quirk."
In reply to: Serge E. Hallyn: "Re: [PATCH] TOMOYO: Add recursive directory matching operatorsupport."
Next in thread: Serge E. Hallyn: "Re: [PATCH] TOMOYO: Add recursive directory matchingoperatorsupport."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello.

Serge E. Hallyn wrote:
> Are you sure you want to use this syntax for 'in_repeating'?

Yes.

I don't have a plan to implement conventional regular expressions.
There are many variants for regular expressions (e.g. shell, perl, sed) and
users likely use characters with special meaning without knowing.
TOMOYO treats a character as literal unless prefixed by '\' character so that
users who didn't know the meaning of a character don't get unwanted results.

> As a unix admin, I expect something like
>
> /{bin,sbin}/init
> (or more likely /{s,}bin/init )
>
> to mean match both /bin/init and /sbin/init.

You will be able to use

path_group ALL_INIT /bin/init
path_group ALL_INIT /sbin/init

+

allow_execute @ALL_INIT

in the future (hopefully in Linux 2.6.34).
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Oleg Nesterov: "Re: [RFC,PATCH 14/14] utrace core"
Previous message: Maxim Levitsky: "[PATCH] Port ricoh_mmc from driver to pci quirk."
In reply to: Serge E. Hallyn: "Re: [PATCH] TOMOYO: Add recursive directory matching operatorsupport."
Next in thread: Serge E. Hallyn: "Re: [PATCH] TOMOYO: Add recursive directory matchingoperatorsupport."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]