Skip to content

Commit

Permalink
UBUNTU: SAUCE: apparmor: advertise availability of exended perms
Browse files Browse the repository at this point in the history 
BugLink: https://bugs.launchpad.net/bugs/2012136

Userspace won't load policy using extended perms unless it knows the
kernel can handle them. Advertise that extended perms are supported in
the feature set.

Signed-off-by: John Johansen <john.johansen@canonical.com>
Signed-off-by: Andrea Righi <andrea.righi@canonical.com>
  • Loading branch information
John Johansen authored and Andrea Righi committed Mar 23, 2023
1 parent b67242b commit 4b64769
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions security/apparmor/apparmorfs.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2548,6 +2548,8 @@ static struct aa_sfs_entry aa_sfs_entry_policy[] = {
AA_SFS_FILE_BOOLEAN("set_load", 1),
/* number of out of band transitions supported */
AA_SFS_FILE_U64("outofband", MAX_OOB_SUPPORTED),
AA_SFS_FILE_U64("permstable32_version", 1),
AA_SFS_FILE_STRING("permstable32", "allow deny subtree cond kill complain prompt audit quiet hide xindex tag label"),
{ }
};

Expand Down

0 comments on commit 4b64769

Please sign in to comment.