[RFC PATCH 4/4] apparmor: differentiate between subjective and objective task credentials

Paul Moore paul at paul-moore.com
Sun Feb 21 22:12:19 UTC 2021


On Sun, Feb 21, 2021 at 7:57 AM John Johansen
<john.johansen at canonical.com> wrote:
> On 2/19/21 3:29 PM, Paul Moore wrote:
> > With the split of the security_task_getsecid() into subjective and
> > objective variants it's time to update AppArmor to ensure it is
> > using the correct task creds.
> >
> > Signed-off-by: Paul Moore <paul at paul-moore.com>
>
> This has a couple problems, that I will work on addressing

Yes, I figured that might be the case; I don't have enough
understanding of the AppArmor internals to do anything more than a ham
fisted approach - my apologies on that.  Let me know if there is
anything I can do to help.

-- 
paul moore
www.paul-moore.com



More information about the Linux-security-module-archive mailing list