diff options
author | John Johansen <john.johansen@canonical.com> | 2012-02-22 00:20:26 -0800 |
---|---|---|
committer | John Johansen <john.johansen@canonical.com> | 2012-02-27 11:38:21 -0800 |
commit | ade3ddc01e2e426cc24c744be85dcaad4e8f8aba (patch) | |
tree | 1e395ce7487cf31c9dccf4d0e3ded0c055980ab2 /security/apparmor/audit.c | |
parent | cdbd2884df8ad026143bb482a96d38e616947b17 (diff) | |
download | linux-ade3ddc01e2e426cc24c744be85dcaad4e8f8aba.tar.bz2 |
AppArmor: Fix dropping of allowed operations that are force audited
The audit permission flag, that specifies an audit message should be
provided when an operation is allowed, was being ignored in some cases.
This is because the auto audit mode (which determines the audit mode from
system flags) was incorrectly assigned the same value as audit mode. The
shared value would result in messages that should be audited going through
a second evaluation as to whether they should be audited based on the
auto audit, resulting in some messages being dropped.
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Kees Cook <kees@ubuntu.com>
Diffstat (limited to 'security/apparmor/audit.c')
-rw-r--r-- | security/apparmor/audit.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/security/apparmor/audit.c b/security/apparmor/audit.c index f3fafedd798a..61344b56722e 100644 --- a/security/apparmor/audit.c +++ b/security/apparmor/audit.c @@ -89,6 +89,7 @@ static char *aa_audit_type[] = { "STATUS", "ERROR", "KILLED" + "AUTO" }; /* |