summarylogtreecommitdiffstats
path: root/0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch
diff options
context:
space:
mode:
authordingjingmaster2020-09-24 20:40:56 +0800
committerdingjingmaster2020-09-24 20:40:56 +0800
commit1872ea3a3b8c1bc9f696c250675064569e438f2b (patch)
tree0777f88509464742455290aa77923bd182ad52bf /0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch
downloadaur-1872ea3a3b8c1bc9f696c250675064569e438f2b.tar.gz
yay
Diffstat (limited to '0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch')
-rw-r--r--0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch13
1 files changed, 13 insertions, 0 deletions
diff --git a/0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch b/0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch
new file mode 100644
index 00000000000..7713f53b32c
--- /dev/null
+++ b/0204-apparmor-fix-apparmor-mediating-locking-non-fs-unix-sockets.patch
@@ -0,0 +1,13 @@
+diff --git a/security/apparmor/lib.c b/security/apparmor/lib.c
+index 30c246a9d4409f7ef90d5e67f2ec94e6d08c766d..ec24f864ef25c6acabd21d7c52b418128b0c5310 100644
+--- a/security/apparmor/lib.c
++++ b/security/apparmor/lib.c
+@@ -334,7 +334,7 @@ void aa_compute_perms(struct aa_dfa *dfa, unsigned int state,
+ /* for v5 perm mapping in the policydb, the other set is used
+ * to extend the general perm set
+ */
+- perms->allow |= map_other(dfa_other_allow(dfa, state));
++ perms->allow |= map_other(dfa_other_allow(dfa, state)) | AA_MAY_LOCK;
+ perms->audit |= map_other(dfa_other_audit(dfa, state));
+ perms->quiet |= map_other(dfa_other_quiet(dfa, state));
+ // perms->xindex = dfa_user_xindex(dfa, state);