Skip to content

parser: Fix automatic adding of rule for change_hat interface

John Johansen requested to merge jjohansen/apparmor:fix-hats into master

The parser is supposed to add a rule to profiles if they are a hat or contain hats granting write access to the kernel interfaces used to perform the change_hat operation.

Unfortunately the check is broken and currently won't add the rule to hats (it does add it for the parent).

Signed-off-by: John Johansen john.johansen@canonical.com

Merge request reports