The purpose of this patch set is to modify the change_profile rule syntax to allow the policy author to specify if AT_SECURE in the kernel's auxiliary vector should be set (see the getauxval man page for details). The AT_SECURE value determines if libc will scrub the newly executed program's environment.
See the following bug for more details: https://launchpad.net/bugs/1584069 Tyler -- AppArmor mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/apparmor
