projects / platform / kernel / linux-exynos.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 98407f0) | patch
apparmor: convert from securityfs to apparmorfs for policy ns files
authorJohn Johansen <john.johansen@canonical.com>
Thu, 25 May 2017 13:35:38 +0000 (06:35 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Thu, 8 Jun 2017 19:51:52 +0000 (12:51 -0700)
commitc961ee5f21b202dea60b63eeef945730d92e46a6
tree111ea19fa70a8cb34df79564b8e61e31bbb3afdctree | snapshot
parent98407f0a0d378df27bfea79301a3aba42d7cea1ccommit | diff
apparmor: convert from securityfs to apparmorfs for policy ns files

Virtualize the apparmor policy/ directory so that the current
namespace affects what part of policy is seen. To do this convert to
using apparmorfs for policy namespace files and setup a magic symlink
in the securityfs apparmor dir to access those files.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Reviewed-by: Seth Arnold <seth.arnold@canonical.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
security/apparmor/apparmorfs.c diff | blob | history
Domain: System / Kernel;