From 9e37c3278e535bb5bc6dcbe0f010f77f35f8482c Mon Sep 17 00:00:00 2001
From: Kshitij Gupta <kgupta8592@gmail.com>
Date: Tue, 26 Aug 2014 03:13:42 +0530
Subject: [PATCH] Fix the value being set in nt_name when allowed path exist

The patch:
- sets nt_name to the path, if it is allowed.

Acked-by: Christian Boltz <apparmor@cboltz.de>

(acked on IRC based on a link to the ML archive[1])

[1] https://lists.ubuntu.com/archives/apparmor/2014-August/006194.html
---
 utils/apparmor/aa.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/utils/apparmor/aa.py b/utils/apparmor/aa.py
index 4bd9ee4ec..e39a794b9 100644
--- a/utils/apparmor/aa.py
+++ b/utils/apparmor/aa.py
@@ -1127,7 +1127,7 @@ def handle_children(profile, hat, root):
                         nt_name = None
                         for entr in m:
                             if aa[profile][hat]['allow']['path'].get(entr, False):
-                                nt_name = aa[profile][hat]
+                                nt_name = entr
                                 break
                         if to_name and to_name != nt_name:
                             pass