apparmor: track ns level so it can be used to help in view checks

Signed-off-by: John Johansen <john.johansen@canonical.com>
author: John Johansen <john.johansen@canonical.com> 2017-01-16 00:42:46 -0800
committer: John Johansen <john.johansen@canonical.com> 2017-01-16 01:18:36 -0800
commit: ee2351e4b07cb7e3609f8661effe0382fb23646b (patch)
tree: 4318e3c079a034fec01fbaa85d3b0f0a7647eacd
parent: apparmor: add special .null file used to "close" fds at exec (diff)
download: linux-dev-ee2351e4b07cb7e3609f8661effe0382fb23646b.tar.xz
linux-dev-ee2351e4b07cb7e3609f8661effe0382fb23646b.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/security/apparmor/policy_ns.c b/security/apparmor/policy_ns.c
index 1e19bd3c7851..93d1826c4b09 100644
--- a/security/apparmor/policy_ns.c
+++ b/security/apparmor/policy_ns.c
@@ -204,6 +204,7 @@ static struct aa_ns *__aa_create_ns(struct aa_ns *parent, const char *name,
 		return ERR_PTR(error);
 	}
 	ns->parent = aa_get_ns(parent);
+	ns->level = parent->level + 1;
 	list_add_rcu(&ns->base.list, &parent->sub_ns);
 	/* add list ref */
 	aa_get_ns(ns);
author	John Johansen <john.johansen@canonical.com>	2017-01-16 00:42:46 -0800
committer	John Johansen <john.johansen@canonical.com>	2017-01-16 01:18:36 -0800
commit	ee2351e4b07cb7e3609f8661effe0382fb23646b (patch)
tree	4318e3c079a034fec01fbaa85d3b0f0a7647eacd
parent	apparmor: add special .null file used to "close" fds at exec (diff)
download	linux-dev-ee2351e4b07cb7e3609f8661effe0382fb23646b.tar.xz linux-dev-ee2351e4b07cb7e3609f8661effe0382fb23646b.zip