mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 16:35:02 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

This patch modifies the changehat interface to return EPERM instead

Browse source 
of EACCESS when an unconfined process calls changehat.  This enables
applications using the changehat api to detect that the application
is not confined so probing for a matching hat can be aborted.
This commit is contained in:
John Johansen 2006-10-24 22:24:44 +00:00
parent ddfbd98849
commit 8c1bf90305
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
module-nextgen/apparmor/main.c
View file

@ -1594,7 +1594,7 @@ int aa_change_hat(const char *hat_name, u32 hat_magic)
/* check to see if an unconfined process is doing a changehat. */
if (!__aa_is_confined(sd)) {
error = -EACCES;
error = -EPERM;
goto out;
}