summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJohn Johansen <john.johansen@canonical.com>2018-01-23 01:47:42 -0800
committerJohn Johansen <john.johansen@canonical.com>2018-02-09 11:30:00 -0800
commit040d9e2bce0a5b321c402b79ee43a8e8d2fd3b06 (patch)
tree6fae38476b2272d2db582cd8bed3fa60b0fec0aa
parentd8a5b80568a9cb66810e75b182018e9edb68e8ff (diff)
downloadop-kernel-dev-040d9e2bce0a5b321c402b79ee43a8e8d2fd3b06.zip
op-kernel-dev-040d9e2bce0a5b321c402b79ee43a8e8d2fd3b06.tar.gz
apparmor: fix display of .ns_name for containers
The .ns_name should not be virtualized by the current ns view. It needs to report the ns base name as that is being used during startup as part of determining apparmor policy namespace support. BugLink: http://bugs.launchpad.net/bugs/1746463 Fixes: d9f02d9c237aa ("apparmor: fix display of ns name") Cc: Stable <stable@vger.kernel.org> Reported-by: Serge Hallyn <serge@hallyn.com> Tested-by: Serge Hallyn <serge@hallyn.com> Signed-off-by: John Johansen <john.johansen@canonical.com>
-rw-r--r--security/apparmor/apparmorfs.c4
1 files changed, 1 insertions, 3 deletions
diff --git a/security/apparmor/apparmorfs.c b/security/apparmor/apparmorfs.c
index d4fa04d..a23b0ca 100644
--- a/security/apparmor/apparmorfs.c
+++ b/security/apparmor/apparmorfs.c
@@ -1189,9 +1189,7 @@ static int seq_ns_level_show(struct seq_file *seq, void *v)
static int seq_ns_name_show(struct seq_file *seq, void *v)
{
struct aa_label *label = begin_current_label_crit_section();
-
- seq_printf(seq, "%s\n", aa_ns_name(labels_ns(label),
- labels_ns(label), true));
+ seq_printf(seq, "%s\n", labels_ns(label)->base.name);
end_current_label_crit_section(label);
return 0;
OpenPOWER on IntegriCloud