[Open-scap] fix process58 for Ubuntu
Bruno Ducrot
bruno at poupinou.org
Fri Sep 8 09:11:28 UTC 2017
On Fri, Sep 08, 2017 at 02:46:36AM -0400, Jan Cerny wrote:
> Hi,
>
> Thanks for the patch. I have included it in upstream.
> https://github.com/OpenSCAP/openscap/commit/0844e5fa6fb6624882b50e6915ecb3393559b4cc
>
> I tried to reproduce this yesterday, but I wasn't successful.
> Do I understand it well that this happens only if SELinux is
> not in use?
It happens if another LSM other than SELinux is in use. For
example, the default under Ubuntu is AppArmor. Since
we do have the same file under /proc used for getting the security
context of a process :
bruno at xenial:~$ cat /proc/self/attr/current
unconfined
then *pid_context will be not NULL, but "unconfined". I
Cheers,
--
Bruno Ducrot
-- Which is worse: ignorance or apathy?
-- Don't know. Don't care.
More information about the Open-scap-list
mailing list