diff options
| author | John Johansen <john.johansen@canonical.com> | 2026-06-22 16:34:13 -0700 |
|---|---|---|
| committer | John Johansen <john.johansen@canonical.com> | 2026-06-23 22:15:15 -0700 |
| commit | 2f6701a5ce6257ae7a64ddc6d89d0a08d2a034f8 (patch) | |
| tree | 418331497d03de2c02740022d2dc54517fd19151 | |
| parent | 4d587cd8a72155089a627130bbd4716ec0856e21 (diff) | |
| download | lwn-2f6701a5ce6257ae7a64ddc6d89d0a08d2a034f8.tar.gz lwn-2f6701a5ce6257ae7a64ddc6d89d0a08d2a034f8.zip | |
apparmor: advertise the tcp fast open fix is applied
The fix for tcp-fast-open ensures that the connect permission is being
mediated correctly but it didn't add an artifact to the feature set to
advertise the fix is available. Add an artifact so that the test suite
can identify if the fix has not been properly applied or a new
unexpected regression has occurred.
Fixes: 4d587cd8a7215 ("apparmor: mediate the implicit connect of TCP fast open sendmsg")
Signed-off-by: John Johansen <john.johansen@canonical.com>
| -rw-r--r-- | security/apparmor/net.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/security/apparmor/net.c b/security/apparmor/net.c index df9cb7c00cac..cf590dd08540 100644 --- a/security/apparmor/net.c +++ b/security/apparmor/net.c @@ -22,12 +22,14 @@ struct aa_sfs_entry aa_sfs_entry_network[] = { AA_SFS_FILE_STRING("af_mask", AA_SFS_AF_MASK), + AA_SFS_FILE_BOOLEAN("tcp-fast-open", 1), { } }; struct aa_sfs_entry aa_sfs_entry_networkv9[] = { AA_SFS_FILE_STRING("af_mask", AA_SFS_AF_MASK), AA_SFS_FILE_BOOLEAN("af_unix", 1), + AA_SFS_FILE_BOOLEAN("tcp-fast-open", 1), { } }; |