Re: [RFC PATCH 4/4] apparmor: differentiate between subjective and objective task credentials

On Sun, Feb 21, 2021 at 7:57 AM John Johansen wrote: > On 2/19/21 3:29 PM, Paul Moore wrote: > > With the split of the security_task_getsecid() into subjective and > > objective variants it's time to update AppArmor to ensure it is > > using the correct task creds. > > > > Signed-off-by: Paul

Re: [RFC PATCH 1/4] lsm: separate security_task_getsecid() into subjective and objective variants

On Sun, Feb 21, 2021 at 7:51 AM John Johansen wrote: > On 2/19/21 3:29 PM, Paul Moore wrote: > > Of the three LSMs that implement the security_task_getsecid() LSM > > hook, all three LSMs provide the task's objective security > > credentials. This turns out to be unfortunate as most of the