commit | 1aeab576d4007a1cc3ad6cb25bb0af9e3fb6c36c | [log] [tgz] |
---|---|---|
author | John Johansen <john.johansen@canonical.com> | Tue Jun 26 02:07:35 2012 -0700 |
committer | John Johansen <john.johansen@canonical.com> | Tue Jun 26 10:34:01 2012 -0700 |
tree | e0b529a980f1cf48a0178e09488efd9913576475 | |
parent | a875a5ada51351ce79bec19e4b6f138fceb62f90 [diff] |
apparmor: Ensure apparmor does not mediate kernel based sockets Currently apparmor makes the assumption that kernel sockets are unmediated because mediation is only done against tasks that have a profile attached. Ensure we never get in a situation where a kernel socket is being mediated by tagging the sk_security field for kernel sockets. Signed-off-by: John Johansen <john.johansen@canonical.com>