apparmor: cleanup fixup description of aa_replace_profiles

author John Johansen <john.johansen@canonical.com>

Fri, 27 Jan 2017 12:36:47 +0000 (04:36 -0800)

committer John Johansen <john.johansen@canonical.com>

Fri, 9 Feb 2018 19:30:01 +0000 (11:30 -0800)
author John Johansen <john.johansen@canonical.com>
Fri, 27 Jan 2017 12:36:47 +0000 (04:36 -0800)
committer John Johansen <john.johansen@canonical.com>
Fri, 9 Feb 2018 19:30:01 +0000 (11:30 -0800)
diff --git a/security/apparmor/policy.c b/security/apparmor/policy.c

index c505d517fa3c9ca3cfe18b2e4434579877db5063..a158af1f1b38f6da7395cf53582ca28e30b0f2a1 100644 (file)
--- a/security/apparmor/policy.c
+++ b/security/apparmor/policy.c
@@ -845,8 +845,9 @@ static struct aa_profile *update_to_newest_parent(struct aa_profile *new)
   * @udata: serialized data stream  (NOT NULL)
   *
   * unpack and replace a profile on the profile list and uses of that profile
- * by any aa_cred_ctx.  If the profile does not exist on the profile list
- * it is added.
+ * by any task creds via invalidating the old version of the profile, which
+ * tasks will notice to update their own cred.  If the profile does not exist
+ * on the profile list it is added.
   *
   * Returns: size of data consumed else error code on failure.
   */
author	John Johansen <john.johansen@canonical.com>
	Fri, 27 Jan 2017 12:36:47 +0000 (04:36 -0800)
committer	John Johansen <john.johansen@canonical.com>
	Fri, 9 Feb 2018 19:30:01 +0000 (11:30 -0800)