]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c3a5cec) | patch
apparmor: fix nnp subset test for unconfined
authorJohn Johansen <john.johansen@canonical.com>
Wed, 25 Sep 2019 15:02:48 +0000 (08:02 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Tue, 21 Jan 2020 13:58:04 +0000 (05:58 -0800)
commit155d0f381dae2aad300f10926c3389aae0a52028
treecfc3ea35aca20cc8527aed39583083a6ed414ad2tree | snapshot
parentc3a5cecf718c5996b49f940888bae1a284d95827commit | diff
apparmor: fix nnp subset test for unconfined

The subset test is not taking into account the unconfined exception
which will cause profile transitions in the stacked confinement
case to fail when no_new_privs is applied.

This fixes a regression introduced in the fix for
https://bugs.launchpad.net/bugs/1839037

BugLink: https://bugs.launchpad.net/bugs/1844186
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/domain.c diff | blob | history
security/apparmor/include/label.h diff | blob | history
security/apparmor/label.c diff | blob | history
Linux Kernel Source Tree.