AppArmor: Fix dropping of allowed operations that are force audited

The audit permission flag, that specifies an audit message should be provided when an operation is allowed, was being ignored in some cases. This is because the auto audit mode (which determines the audit mode from system flags) was incorrectly assigned the same value as audit mode. The shared value would result in messages that should be audited going through a second evaluation as to whether they should be audited based on the auto audit, resulting in some messages being dropped. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Kees Cook <kees@ubuntu.com>
author: John Johansen <john.johansen@canonical.com> 2012-02-22 00:20:26 -0800
committer: John Johansen <john.johansen@canonical.com> 2012-02-27 11:38:21 -0800
commit: ade3ddc01e2e426cc24c744be85dcaad4e8f8aba (patch)
tree: 1e395ce7487cf31c9dccf4d0e3ded0c055980ab2 /security/apparmor/audit.c
parent: cdbd2884df8ad026143bb482a96d38e616947b17 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/security/apparmor/audit.c b/security/apparmor/audit.c
index f3fafedd798a..61344b56722e 100644
--- a/security/apparmor/audit.c
+++ b/security/apparmor/audit.c
@@ -89,6 +89,7 @@ static char *aa_audit_type[] = {
 	"STATUS",
 	"ERROR",
 	"KILLED"
+	"AUTO"
 };
 
 /*
author	John Johansen <john.johansen@canonical.com>	2012-02-22 00:20:26 -0800
committer	John Johansen <john.johansen@canonical.com>	2012-02-27 11:38:21 -0800
commit	ade3ddc01e2e426cc24c744be85dcaad4e8f8aba (patch)
tree	1e395ce7487cf31c9dccf4d0e3ded0c055980ab2 /security/apparmor/audit.c
parent	cdbd2884df8ad026143bb482a96d38e616947b17 (diff)