git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	John Johansen <john.johansen@canonical.com>
	Sun, 10 Sep 2023 10:35:22 +0000 (03:35 -0700)
committer	John Johansen <john.johansen@canonical.com>
	Wed, 18 Oct 2023 23:01:32 +0000 (16:01 -0700)
commit	157a3537d6bc28ceb9a11fc8cb67f2152d860146
tree	2fcb30f046abf48c7299c872c7705384c5915b68	tree \| snapshot
parent	ea9bae12d02819556db63348db8bd8441eb316f2	commit \| diff

apparmor: Fix regression in mount mediation

commit 2db154b3ea8e ("vfs: syscall: Add move_mount(2) to move mounts around")

introduced a new move_mount(2) system call and a corresponding new LSM
security_move_mount hook but did not implement this hook for any
existing LSM. This creates a regression for AppArmor mediation of
mount. This patch provides a base mapping of the move_mount syscall to
the existing mount mediation. In the future we may introduce
additional mediations around the new mount calls.

Fixes: 2db154b3ea8e ("vfs: syscall: Add move_mount(2) to move mounts around")
CC: stable@vger.kernel.org
Reported-by: Andreas Steinmetz <anstein99@googlemail.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>

security/apparmor/include/mount.h		diff \| blob \| blame \| history
security/apparmor/lsm.c		diff \| blob \| blame \| history
security/apparmor/mount.c		diff \| blob \| blame \| history