linux

History

John Johansen 157a3537d6 apparmor: Fix regression in mount mediation commit `2db154b3ea` ("vfs: syscall: Add move_mount(2) to move mounts around") introduced a new move_mount(2) system call and a corresponding new LSM security_move_mount hook but did not implement this hook for any existing LSM. This creates a regression for AppArmor mediation of mount. This patch provides a base mapping of the move_mount syscall to the existing mount mediation. In the future we may introduce additional mediations around the new mount calls. Fixes: `2db154b3ea` ("vfs: syscall: Add move_mount(2) to move mounts around") CC: stable@vger.kernel.org Reported-by: Andreas Steinmetz <anstein99@googlemail.com> Signed-off-by: John Johansen <john.johansen@canonical.com>		2023-10-18 16:01:32 -07:00
..
apparmor.h	apparmor: add io_uring mediation	2023-10-18 15:58:49 -07:00
apparmorfs.h	…
audit.h	apparmor: add io_uring mediation	2023-10-18 15:58:49 -07:00
capability.h	apparmor: pass cred through to audit info.	2023-10-18 15:30:38 -07:00
cred.h	…
crypto.h	…
domain.h	…
file.h	apparmor: pass cred through to audit info.	2023-10-18 15:30:38 -07:00
ipc.h	apparmor: pass cred through to audit info.	2023-10-18 15:30:38 -07:00
label.h	…
lib.h	apparmor: refcount the pdb	2023-10-18 15:30:47 -07:00
match.h	apparmor: refcount the pdb	2023-10-18 15:30:47 -07:00
mount.h	apparmor: Fix regression in mount mediation	2023-10-18 16:01:32 -07:00
net.h	apparmor: pass cred through to audit info.	2023-10-18 15:30:38 -07:00
path.h	…
perms.h	apparmor: add io_uring mediation	2023-10-18 15:58:49 -07:00
policy.h	apparmor: allow restricting unprivileged change_profile	2023-10-18 15:48:44 -07:00
policy_compat.h	…
policy_ns.h	apparmor: remove unused functions in policy_ns.c/.h	2023-10-15 21:44:31 -07:00
policy_unpack.h	…
procattr.h	…
resource.h	apparmor: pass cred through to audit info.	2023-10-18 15:30:38 -07:00
secid.h	…
sig_names.h	…
task.h	apparmor: add user namespace creation mediation	2023-10-18 15:49:02 -07:00