]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/commit
projects / mirror_ubuntu-zesty-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8ccc176) | patch
UBUNTU: SAUCE: apparmor: Consult sysctl when reading profiles in a user ns
authorTyler Hicks <tyhicks@canonical.com>
Wed, 23 Mar 2016 21:41:33 +0000 (16:41 -0500)
committerTim Gardner <tim.gardner@canonical.com>
Mon, 20 Feb 2017 03:57:58 +0000 (20:57 -0700)
commit590a154b6025c903e1f81821eee3c52368f1914e
tree618e219048dba05ac4a1c83dbc5e84733ba3e272tree
parent8ccc1769885c5125876e801e997ea9b0c27e4002commit | diff
UBUNTU: SAUCE: apparmor: Consult sysctl when reading profiles in a user ns

BugLink: https://launchpad.net/bugs/1560583
Check the value of the unprivileged_userns_apparmor_policy sysctl when a
namespace root process attempts to read the apparmorfs profiles file.

Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
Signed-off-by: Leann Ogasawara <leann.ogasawara@canonical.com>
Signed-off-by: Tim Gardner <tim.gardner@canonical.com>
security/apparmor/policy.c diff | blob | blame | history
ubuntu-zesty-kernel mirror