linux-stable.git/security/apparmor/context.c, branch linux-4.15.y Linux kernel stable tree apparmor: switch from profiles to using labels on contexts 2017-06-11T00:11:38+00:00 John Johansen john.johansen@canonical.com 2017-06-09T15:14:28+00:00 637f688dc3dc304a89f441d76f49a0e35bc49c08 Begin the actual switch to using domain labels by storing them on the context and converting the label to a singular profile where possible. Signed-off-by: John Johansen <john.johansen@canonical.com> 
Begin the actual switch to using domain labels by storing them on
the context and converting the label to a singular profile where
possible.

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: convert to profile block critical sections 2017-06-11T00:11:34+00:00 John Johansen john.johansen@canonical.com 2017-06-09T09:08:28+00:00 cf797c0e5e312520b0b9f0367039fc0279a07a76 There are still a few places where profile replacement fails to update and a stale profile is used for mediation. Fix this by moving to accessing the current label through a critical section that will always ensure mediation is using the current label regardless of whether the tasks cred has been updated or not. Signed-off-by: John Johansen <john.johansen@canonical.com> 
There are still a few places where profile replacement fails to update
and a stale profile is used for mediation. Fix this by moving to
accessing the current label through a critical section that will
always ensure mediation is using the current label regardless of
whether the tasks cred has been updated or not.

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: replace remaining BUG_ON() asserts with AA_BUG() 2017-01-16T09:18:56+00:00 John Johansen john.johansen@canonical.com 2017-01-16T08:43:15+00:00 e6bfa25deb5096c05a08f01e4d6a436dd331fa88 AA_BUG() uses WARN and won't break the kernel like BUG_ON(). Signed-off-by: John Johansen <john.johansen@canonical.com> 
AA_BUG() uses WARN and won't break the kernel like BUG_ON().

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: rename context abreviation cxt to the more standard ctx 2017-01-16T09:18:45+00:00 John Johansen john.johansen@canonical.com 2017-01-16T08:43:00+00:00 55a26ebf630b6bf1cb7ddf8882fdc81d58afeaa2 Signed-off-by: John Johansen <john.johansen@canonical.com> 
Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: fail task profile update if current_cred isn't real_cred 2017-01-16T09:18:45+00:00 John Johansen john.johansen@canonical.com 2017-01-16T08:42:59+00:00 a20aa95fbe1abb4c6f333a1f55e9fd15b01c7f12 Trying to update the task cred while the task current cred is not the real cred will result in an error at the cred layer. Avoid this by failing early and delaying the update. Signed-off-by: John Johansen <john.johansen@canonical.com> 
Trying to update the task cred while the task current cred is not the
real cred will result in an error at the cred layer. Avoid this by
failing early and delaying the update.

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: rename replacedby to proxy 2017-01-16T09:18:19+00:00 John Johansen john.johansen@canonical.com 2017-01-16T08:42:19+00:00 8399588a7f9def9195e577f988ad06f2a0ffb1af Proxy is shorter and a better fit than replaceby, so rename it. Signed-off-by: John Johansen <john.johansen@canonical.com> 
Proxy is shorter and a better fit than replaceby, so rename it.

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: change how profile replacement update is done 2013-08-14T18:42:06+00:00 John Johansen john.johansen@canonical.com 2013-07-11T04:07:43+00:00 77b071b34045a0c65d0e1f85f3d47fd2b8b7a8a1 remove the use of replaced by chaining and move to profile invalidation and lookup to handle task replacement. Replacement chaining can result in large chains of profiles being pinned in memory when one profile in the chain is use. With implicit labeling this will be even more of a problem, so move to a direct lookup method. Signed-off-by: John Johansen <john.johansen@canonical.com> 
remove the use of replaced by chaining and move to profile invalidation
and lookup to handle task replacement.

Replacement chaining can result in large chains of profiles being pinned
in memory when one profile in the chain is use. With implicit labeling
this will be even more of a problem, so move to a direct lookup method.

Signed-off-by: John Johansen <john.johansen@canonical.com>
apparmor: localize getting the security context to a few macros 2013-04-28T07:39:35+00:00 John Johansen john.johansen@canonical.com 2013-02-27T11:43:40+00:00 214beacaa7b669473bc963af719fa359a8312ea4 Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com> 
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Seth Arnold <seth.arnold@canonical.com>
apparmor: use common fn to clear task_context for domain transitions 2013-04-28T07:36:20+00:00 John Johansen john.johansen@canonical.com 2013-02-19T00:05:34+00:00 7a2871b566f34d980556072943295efd107eb53c Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Steve Beattie <sbeattie@ubuntu.com> 
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Steve Beattie <sbeattie@ubuntu.com>
apparmor: add utility function to get an arbitrary tasks profile. 2013-04-28T07:35:53+00:00 John Johansen john.johansen@canonical.com 2013-02-19T00:03:34+00:00 3cfcc19e0b5390c04cb5bfa4e8fde39395410e61 Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Steve Beattie <sbeattie@ubuntu.com> 
Signed-off-by: John Johansen <john.johansen@canonical.com>
Acked-by: Steve Beattie <sbeattie@ubuntu.com>