apparmor: fix quiet_denied for file rules

Global quieting of denied AppArmor generated file events is not handled correctly. Unfortunately the is checking if quieting of all audit events is set instead of just denied events. Fixes: 67012e8209df ("AppArmor: basic auditing infrastructure.") Signed-off-by: John Johansen <john.johansen@canonical.com>
author: John Johansen <john.johansen@canonical.com> 2021-04-29 01:48:28 -0700
committer: John Johansen <john.johansen@canonical.com> 2022-07-09 15:13:59 -0700
commit: 68ff8540cc9e4ab557065b3f635c1ff4c96e1f1c (patch)
tree: 79da8c3081ac7cc3c65d1bf3bddfe1ca39667b92 /security
parent: ba77f39062c15d8fc6dcfbf5759747b4de09bfab (diff)
download: linux-68ff8540cc9e4ab557065b3f635c1ff4c96e1f1c.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/security/apparmor/audit.c b/security/apparmor/audit.c
index f7e97c7e80f3d4..704b0c895605a7 100644
--- a/security/apparmor/audit.c
+++ b/security/apparmor/audit.c
@@ -137,7 +137,7 @@ int aa_audit(int type, struct aa_profile *profile, struct common_audit_data *sa,
 	}
 	if (AUDIT_MODE(profile) == AUDIT_QUIET ||
 	    (type == AUDIT_APPARMOR_DENIED &&
-	     AUDIT_MODE(profile) == AUDIT_QUIET))
+	     AUDIT_MODE(profile) == AUDIT_QUIET_DENIED))
 		return aad(sa)->error;
 
 	if (KILL_MODE(profile) && type == AUDIT_APPARMOR_DENIED)
author	John Johansen <john.johansen@canonical.com>	2021-04-29 01:48:28 -0700
committer	John Johansen <john.johansen@canonical.com>	2022-07-09 15:13:59 -0700
commit	68ff8540cc9e4ab557065b3f635c1ff4c96e1f1c (patch)
tree	79da8c3081ac7cc3c65d1bf3bddfe1ca39667b92 /security
parent	ba77f39062c15d8fc6dcfbf5759747b4de09bfab (diff)
download	linux-68ff8540cc9e4ab557065b3f635c1ff4c96e1f1c.tar.gz