apparmor: Restore Y/N in /sys for apparmor's "enabled"
Before commit c5459b82 ("LSM: Plumb visibility into optional "enabled" state"), /sys/module/apparmor/parameters/enabled would show "Y" or "N" since it was using the "bool" handler. After being changed to "int", this switched to "1" or "0", breaking the userspace AppArmor detection of dbus-broker. This restores the Y/N output while keeping the LSM infrastructure happy. Before: $ cat /sys/module/apparmor/parameters/enabled 1 After: $ cat /sys/module/apparmor/parameters/enabled Y Reported-by: NDavid Rheinsberg <david.rheinsberg@gmail.com> Reviewed-by: NDavid Rheinsberg <david.rheinsberg@gmail.com> Link: https://lkml.kernel.org/r/CADyDSO6k8vYb1eryT4g6+EHrLCvb68GAbHVWuULkYjcZcYNhhw@mail.gmail.com Fixes: c5459b82 ("LSM: Plumb visibility into optional "enabled" state") Signed-off-by: NKees Cook <keescook@chromium.org> Signed-off-by: NJohn Johansen <john.johansen@canonical.com>
Showing
想要评论请 注册 或 登录