apparmor: fix quiet_denied for file rules

commit 68ff8540cc9e4ab557065b3f635c1ff4c96e1f1c upstream. Global quieting of denied AppArmor generated file events is not handled correctly. Unfortunately the is checking if quieting of all audit events is set instead of just denied events. Fixes: 67012e8209df ("AppArmor: basic auditing infrastructure.") Signed-off-by: John Johansen <john.johansen@canonical.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: John Johansen <john.johansen@canonical.com> 2021-04-29 01:48:28 -0700
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2022-08-25 11:45:10 +0200
commit: a84ad486f3d2eef48655d72cb4e5a296ac86f6a8 (patch)
tree: cb131c77572b6e9b529560be9f08bc4d78188157 /security
parent: eca83750658df6888e49c9b2cb217c97683e45c1 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/security/apparmor/audit.c b/security/apparmor/audit.c
index f7e97c7e80f3..704b0c895605 100644
--- a/security/apparmor/audit.c
+++ b/security/apparmor/audit.c
@@ -137,7 +137,7 @@ int aa_audit(int type, struct aa_profile *profile, struct common_audit_data *sa,
 	}
 	if (AUDIT_MODE(profile) == AUDIT_QUIET ||
 	    (type == AUDIT_APPARMOR_DENIED &&
-	     AUDIT_MODE(profile) == AUDIT_QUIET))
+	     AUDIT_MODE(profile) == AUDIT_QUIET_DENIED))
 		return aad(sa)->error;
 
 	if (KILL_MODE(profile) && type == AUDIT_APPARMOR_DENIED)
author	John Johansen <john.johansen@canonical.com>	2021-04-29 01:48:28 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2022-08-25 11:45:10 +0200
commit	a84ad486f3d2eef48655d72cb4e5a296ac86f6a8 (patch)
tree	cb131c77572b6e9b529560be9f08bc4d78188157 /security
parent	eca83750658df6888e49c9b2cb217c97683e45c1 (diff)