OpenSDV
/
original_kernel
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
original_kernel/security/apparmor
History
Kees Cook e33c1b9923 apparmor: Restore Y/N in /sys for apparmor's "enabled" 
Before commit c5459b829b ("LSM: Plumb visibility into optional "enabled"
state"), /sys/module/apparmor/parameters/enabled would show "Y" or "N"
since it was using the "bool" handler. After being changed to "int",
this switched to "1" or "0", breaking the userspace AppArmor detection
of dbus-broker. This restores the Y/N output while keeping the LSM
infrastructure happy.

Before:
	$ cat /sys/module/apparmor/parameters/enabled
	1

After:
	$ cat /sys/module/apparmor/parameters/enabled
	Y

Reported-by: David Rheinsberg <david.rheinsberg@gmail.com>
Reviewed-by: David Rheinsberg <david.rheinsberg@gmail.com>
Link: https://lkml.kernel.org/r/CADyDSO6k8vYb1eryT4g6+EHrLCvb68GAbHVWuULkYjcZcYNhhw@mail.gmail.com
Fixes: c5459b829b ("LSM: Plumb visibility into optional "enabled" state")
Signed-off-by: Kees Cook <keescook@chromium.org>
Signed-off-by: John Johansen <john.johansen@canonical.com>
 		2019-04-10 04:24:48 -07:00
..
include audit/stable-5.1 PR 20190305 2019-03-07 12:20:11 -08:00
.gitignore
Kconfig apparmor: Remove SECURITY_APPARMOR_BOOTPARAM_VALUE 2019-01-08 13:18:43 -08:00
Makefile
apparmorfs.c + Bug Fixes 2019-03-13 11:07:36 -07:00
audit.c audit: remove unused actx param from audit_rule_match 2019-01-31 23:00:15 -05:00
capability.c LSM: generalize flag passing to security_capable 2019-01-10 14:16:06 -08:00
crypto.c crypto: drop mask=CRYPTO_ALG_ASYNC from 'shash' tfm allocations 2018-11-20 14:26:55 +08:00
domain.c Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security 2019-03-07 11:44:01 -08:00
file.c
ipc.c LSM: generalize flag passing to security_capable 2019-01-10 14:16:06 -08:00
label.c
lib.c
lsm.c apparmor: Restore Y/N in /sys for apparmor's "enabled" 2019-04-10 04:24:48 -07:00
match.c
mount.c vfs: Suppress MS_* flag defs within the kernel unless explicitly enabled 2018-12-20 16:32:56 +00:00
net.c
nulldfa.in
path.c
policy.c
policy_ns.c
policy_unpack.c apparmor: fix double free when unpack of secmark rules fails 2019-03-12 03:48:02 -07:00
procattr.c
resource.c LSM: generalize flag passing to security_capable 2019-01-10 14:16:06 -08:00
secid.c + Features/Improvements 2018-11-02 10:04:26 -07:00
stacksplitdfa.in
task.c AppArmor: Abstract use of cred security blob 2019-01-08 13:18:44 -08:00