mirrors/apparmor.d
1
0
Fork 0
mirror of https://github.com/roddhjav/apparmor.d.git synced 2025-01-18 17:08:09 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat(aa-log): ensure unix rule are not confused with network unix rule.

Browse source 
Both are technically the same, we simply prioritize `unix` to `network unix`.
This commit is contained in:
Alexandre Pujol 2024-02-29 00:20:37 +00:00
parent e3daaf3d4c
commit e616b9b3fc
Failed to generate hash of commit
1 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
pkg/aa/profile.go
View file

@ -85,7 +85,11 @@ func (p *AppArmorProfile) AddRule(log map[string]string) {
case "cap":
p.Rules = append(p.Rules, CapabilityFromLog(log))
case "net":
if log["family"] == "unix" {
p.Rules = append(p.Rules, UnixFromLog(log))
} else {
p.Rules = append(p.Rules, NetworkFromLog(log))
}
case "mount":
switch log["operation"] {
case "mount":