17322cc3f9
When policy specifies a transition to a profile that is not currently loaded, it result in exec being denied. However the failure is not being audited correctly because the audit code is treating this as an allowed permission and thus not reporting it. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-By: Steve Beattie <sbeattie@ubuntu.com> |
||
|---|---|---|
| .. | ||
| include | ||
| .gitignore | ||
| apparmorfs.c | ||
| audit.c | ||
| capability.c | ||
| context.c | ||
| domain.c | ||
| file.c | ||
| ipc.c | ||
| Kconfig | ||
| lib.c | ||
| lsm.c | ||
| Makefile | ||
| match.c | ||
| path.c | ||
| policy_unpack.c | ||
| policy.c | ||
| procattr.c | ||
| resource.c | ||
| sid.c | ||