projects / platform / kernel / linux-starfive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a68d59f) | patch
apparmor: fix nnp subset test for unconfined
authorJohn Johansen <john.johansen@canonical.com>
Wed, 25 Sep 2019 15:02:48 +0000 (08:02 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Tue, 21 Jan 2020 13:58:04 +0000 (05:58 -0800)
commit3ed4aaa94fc07db3cd0c91be95e3e1b9782a2710
treecfc3ea35aca20cc8527aed39583083a6ed414ad2tree | snapshot
parenta68d59ff4d67ec182926aaa82daaa66b3d465c9acommit | diff
apparmor: fix nnp subset test for unconfined

The subset test is not taking into account the unconfined exception
which will cause profile transitions in the stacked confinement
case to fail when no_new_privs is applied.

This fixes a regression introduced in the fix for
https://bugs.launchpad.net/bugs/1839037

BugLink: https://bugs.launchpad.net/bugs/1844186
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/domain.c diff | blob | history
security/apparmor/include/label.h diff | blob | history
security/apparmor/label.c diff | blob | history
Domain: System / Kernel;