1
From c1216728b7d644443eef31e4bd9d01b4a0a51d61 Mon Sep 17 00:00:00 2001
2
From: John Johansen <john.johansen@canonical.com>
3
Date: Fri, 25 Jul 2014 04:02:03 -0700
4
Subject: [PATCH 05/27] apparmor: exec should not be returning ENOENT when it
7
The current behavior is confusing as it causes exec failures to report
8
the executable is missing instead of identifying that apparmor
11
Signed-off-by: John Johansen <john.johansen@canonical.com>
12
Acked-by: Seth Arnold <seth.arnold@canonical.com>
14
security/apparmor/domain.c | 2 +-
15
1 file changed, 1 insertion(+), 1 deletion(-)
17
diff --git a/security/apparmor/domain.c b/security/apparmor/domain.c
18
index dc0027b..67a7418 100644
19
--- a/security/apparmor/domain.c
20
+++ b/security/apparmor/domain.c
21
@@ -433,7 +433,7 @@ int apparmor_bprm_set_creds(struct linux_binprm *bprm)
22
new_profile = aa_get_newest_profile(ns->unconfined);
27
info = "profile not found";
28
/* remove MAY_EXEC to audit as failure */
29
perms.allow &= ~MAY_EXEC;