projects / linux-block.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 95ff118) | patch
apparmor: force audit on unconfined exec if info is set by find_attach
authorRyan Lee <ryan.lee@canonical.com>
Fri, 2 May 2025 00:55:43 +0000 (17:55 -0700)
committerJohn Johansen <john.johansen@canonical.com>
Mon, 26 May 2025 03:15:01 +0000 (20:15 -0700)
commit89a3561e69e5187fcce302eef429acd38aec1277
treea332c7314397b8e9e9436636bab7eedde464d54btree
parent95ff11895846eec76a19351a109fbabbdd86b417commit | diff
apparmor: force audit on unconfined exec if info is set by find_attach

find_attach may set info if something unusual happens during that process
(currently only used to signal conflicting attachments, but this could be
expanded in the future). This is information that should be propagated to
userspace via an audit message.

Signed-off-by: Ryan Lee <ryan.lee@canonical.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>
security/apparmor/domain.c diff | blob | blame | history
Linux 6.x block layer and io_uring tree(s)