Inheritance for defines.

Discuss and suggest new grsecurity features

Inheritance for defines.

Postby Pallas » Tue Dec 23, 2014 4:02 pm

Hi all! Can you implement inheritance for "defines"? For example, I want to use define in another define, such as:

Code: Select all
define libstdc++ {
        /lib64
        /lib64/libc-2.19.so                                             rx
        /lib64/libm-2.19.so                                             rx
        /usr/lib64
        /usr/lib64/gcc/x86_64-pc-linux-gnu/4.8.3/libgcc_s.so.1          rx
        /usr/lib64/gcc/x86_64-pc-linux-gnu/4.8.3/libstdc++.so.6.0.19    rx
}

define QtCore4 {
        $libstc++
        /lib64/libdl-2.19.so                                            rx
        /lib64/libpthread-2.19.so                                       rx
        /lib64/librt-2.19.so                                            rx
        /lib64/libz.so.1.*                                              rx
        /usr/lib64/libglib-2.0.so.0*                                    rx
        /usr/lib64/qt4/libQtCore.so.4.8.5                               rx
}

define kdelibcore {
        $QtCore4
        [....]
}


It very simple example, but I have more complex. And with existing "define"-system I need copypaste sooooo much rules, because I don't know how rules can be inherited.

I believe that will reduced size of rule set and simplified.
Pallas
 
Posts: 4
Joined: Mon Aug 25, 2014 5:25 pm

Return to grsecurity development

cron