projects / platform / kernel / linux-rpi.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3664268) | patch
apparmor: fix policy load/remove semantics
authorJohn Johansen <john.johansen@canonical.com>
Sun, 4 Jun 2017 19:22:22 +0000 (12:22 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Sun, 11 Jun 2017 00:11:32 +0000 (17:11 -0700)
commit60285eb3e7c8827e00e2f2b54561a8cca07d802f
tree3f4ea89339e63e1a522e0d6d814f64348e555e5etree | snapshot
parent3664268f19ea07bec55df92fe53ff9ed28968bcccommit | diff
apparmor: fix policy load/remove semantics

The namespace being passed into the replace/remove profiles fns() is
not the view, but the namespace specified by the inode from the
file hook (if present) or the loading tasks ns, if accessing the
top level virtualized load/replace file interface.

Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/apparmorfs.c diff | blob | history
security/apparmor/policy.c diff | blob | history
Domain: System / Kernel;