]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5eaafb) | patch
apparmor: add a kernel label to use on kernel objects
authorJohn Johansen <john.johansen@canonical.com>
Tue, 24 May 2022 09:38:12 +0000 (02:38 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Wed, 13 Jul 2022 23:37:21 +0000 (16:37 -0700)
commit9fe5971a046f638b9f024a56baa3ec25adf2eb02
treeed4981a6a37076e2258d868a677ddcd8a976d63atree | snapshot
parente5eaafb08f42920b969ac6614d06fe40501a1929commit | diff
apparmor: add a kernel label to use on kernel objects

Separate kernel objects from unconfined. This is done so we can
distinguish between the two in debugging, auditing and in preparation
for being able to replace unconfined, which is not appropriate for the
kernel.

The kernel label will continue to behave similar to unconfined.

Acked-by: Jon Tourville <jon.tourville@canonical.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/include/policy_ns.h diff | blob | history
security/apparmor/lsm.c diff | blob | history
security/apparmor/net.c diff | blob | history
security/apparmor/policy_ns.c diff | blob | history
Linux Kernel Source Tree.