]> www.infradead.org Git - users/dwmw2/linux.git/commit
projects / users / dwmw2 / linux.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 5cc720f) | patch
apparmor: fix nnp subset test for unconfined
authorJohn Johansen <john.johansen@canonical.com>
Wed, 25 Sep 2019 15:02:48 +0000 (08:02 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Wed, 24 Jun 2020 15:48:32 +0000 (17:48 +0200)
commite76f91930b8a61ab6323a56dcd6eecd6bf070b8c
tree89b8d5c0140cfe5fd5fbc1041ba1e2f8d152d35ctree
parent5cc720f10234d456ad3273912415d928647c681dcommit | diff
apparmor: fix nnp subset test for unconfined

[ Upstream commit 3ed4aaa94fc07db3cd0c91be95e3e1b9782a2710 ]

The subset test is not taking into account the unconfined exception
which will cause profile transitions in the stacked confinement
case to fail when no_new_privs is applied.

This fixes a regression introduced in the fix for
https://bugs.launchpad.net/bugs/1839037

BugLink: https://bugs.launchpad.net/bugs/1844186
Signed-off-by: John Johansen <john.johansen@canonical.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
security/apparmor/domain.c diff | blob | history
security/apparmor/include/label.h diff | blob | history
security/apparmor/label.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.