From: Linus Torvalds <torvalds@linux-foundation.org>
Date: Wed, 3 Jan 2024 21:58:37 +0000 (-0800)
Subject: Merge tag 'apparmor-pr-2024-01-03' of git://git.kernel.org/pub/scm/linux/kernel/git... 
X-Git-Tag: v6.7~18
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=d7807d8544e56af9b5523f15eddac09ec0291b4e;p=thirdparty%2Fkernel%2Flinux.git

Merge tag 'apparmor-pr-2024-01-03' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor

Pull apparmor fix from John Johansen:
 "Detect that the source mount is not in the namespace and if it isn't
  don't use it as a source path match.

  This prevent apparmor from applying the attach_disconnected flag to
  move_mount() source which prevents detached mounts from appearing as /
  when applying mount mediation, which is not only incorrect but could
  result in bad policy being generated"

* tag 'apparmor-pr-2024-01-03' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor:
  apparmor: Fix move_mount mediation by detecting if source is detached
---

d7807d8544e56af9b5523f15eddac09ec0291b4e