]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 31c2ddf) | patch
apparmor: fix nnp subset test for unconfined
authorJohn Johansen <john.johansen@canonical.com>
Wed, 25 Sep 2019 15:02:48 +0000 (08:02 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Tue, 21 Jan 2020 13:58:04 +0000 (05:58 -0800)
commit748abd785b0ffe613962c286ad0d53ccc7b07501
treecfc3ea35aca20cc8527aed39583083a6ed414ad2tree | snapshot
parent31c2ddf688e78138efc8b01883d6223be80f781dcommit | diff
apparmor: fix nnp subset test for unconfined

The subset test is not taking into account the unconfined exception
which will cause profile transitions in the stacked confinement
case to fail when no_new_privs is applied.

This fixes a regression introduced in the fix for
https://bugs.launchpad.net/bugs/1839037

BugLink: https://bugs.launchpad.net/bugs/1844186
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/domain.c diff | blob | history
security/apparmor/include/label.h diff | blob | history
security/apparmor/label.c diff | blob | history
Linux Kernel Source Tree.