| Message ID | 1471943154-14507-1-git-send-email-john.johansen@canonical.com |
|---|---|
| State | New |
| Headers | show |
On Tue, Aug 23, 2016 at 02:05:40AM -0700, John Johansen wrote: > The following is a set of fixes to apparmor 3.5-beta1. The patches are > also available for request pull This entire patch set to Xenial, but I'm not sure what to do with most of the BugLink LP bugs... These two had the usual "linux (Ubuntu)" task lines so I nominated them for Xenial and marked them Fix Committed as usual: BugLink: http://bugs.launchpad.net/bugs/1592547 BugLink: http://bugs.launchpad.net/bugs/1593874 But the rest are filed only against "AppArmor" -- they don't have any "linux" task line. Do we require them to? (Brad?) I just left these "AppArmor" bugs alone for now: BugLink: http://bugs.launchpad.net/bugs/1579135 BugLink: http://bugs.launchpad.net/bugs/1615878 BugLink: http://bugs.launchpad.net/bugs/1615880 BugLink: http://bugs.launchpad.net/bugs/1615881 BugLink: http://bugs.launchpad.net/bugs/1615882 BugLink: http://bugs.launchpad.net/bugs/1615885 BugLink: http://bugs.launchpad.net/bugs/1615887 BugLink: http://bugs.launchpad.net/bugs/1615889 BugLink: http://bugs.launchpad.net/bugs/1615890 BugLink: http://bugs.launchpad.net/bugs/1615892 BugLink: http://bugs.launchpad.net/bugs/1615893 BugLink: http://bugs.launchpad.net/bugs/1615895 -Kamal
On 08/23/2016 10:51 AM, Kamal Mostafa wrote: > On Tue, Aug 23, 2016 at 02:05:40AM -0700, John Johansen wrote: >> The following is a set of fixes to apparmor 3.5-beta1. The patches are >> also available for request pull > > This entire patch set to Xenial, but I'm not sure what to do with most > of the BugLink LP bugs... > > These two had the usual "linux (Ubuntu)" task lines so I nominated them > for Xenial and marked them Fix Committed as usual: > > BugLink: http://bugs.launchpad.net/bugs/1592547 > BugLink: http://bugs.launchpad.net/bugs/1593874 > > But the rest are filed only against "AppArmor" -- they don't have any > "linux" task line. Do we require them to? (Brad?) > > I just left these "AppArmor" bugs alone for now: > > BugLink: http://bugs.launchpad.net/bugs/1579135 > BugLink: http://bugs.launchpad.net/bugs/1615878 > BugLink: http://bugs.launchpad.net/bugs/1615880 > BugLink: http://bugs.launchpad.net/bugs/1615881 > BugLink: http://bugs.launchpad.net/bugs/1615882 > BugLink: http://bugs.launchpad.net/bugs/1615885 > BugLink: http://bugs.launchpad.net/bugs/1615887 > BugLink: http://bugs.launchpad.net/bugs/1615889 > BugLink: http://bugs.launchpad.net/bugs/1615890 > BugLink: http://bugs.launchpad.net/bugs/1615892 > BugLink: http://bugs.launchpad.net/bugs/1615893 > BugLink: http://bugs.launchpad.net/bugs/1615895 > I will get the tasks added, do you want me to mark them fix committed for you
The following is a set of fixes to apparmor 3.5-beta1. The patches are also available for request pull --- The following changes since commit f7c96bca3cecc682db7205fed614aeaeb7c0e631: UBUNTU: Ubuntu-4.4.0-34.53 (2016-07-27 10:01:39 -0500) are available in the git repository at: git://kernel.ubuntu.com/jj/ubuntu-xenial/ fix-xenial for you to fetch changes up to 58cc36c69c2be8415a23f7c8b9076b6c5ff3b571: UBUNTU: SAUCE: apparmor: Fix auditing behavior for change_hat probing (2016-08-23 02:00:23 -0700) ---------------------------------------------------------------- John Johansen (14): UBUNTU: SAUCE: apparmor: Fix __label_update proxy comparison test UBUNTU: SAUCE: apparmor: fix stack trace when removing namespace with profiles UBUNTU: SAUCE: apparmor: Fix new to old label comparison for domain transitions UBUNTU: SAUCE: apparmor: Fix label build for onexec stacking. UBUNTU: SAUCE: apparmor: Add missing id bounds check on dfa verification UBUNTU: SAUCE: apparmor: fix: don't check for vmalloc_addr if kvzalloc() failed UBUNTU: SAUCE: apparmor: oops in profile_unpack() when policy_db is not present UBUNTU: SAUCE: apparmor: profiles in one ns can affect mediation in another ns UBUNTU: SAUCE: apparmor: reduction of vec to single entry is just that entry UBUNTU: SAUCE: apparmor: fix vec_unique for vectors larger than 8 UBUNTU: SAUCE: apparmor: fix: parameters can be changed after policy is locked UBUNTU: SAUCE: apparmor: special case unconfined when determining the mode UBUNTU: SAUCE: apparmor: deleted dentries can be disconnected UBUNTU: SAUCE: apparmor: Fix auditing behavior for change_hat probing security/apparmor/domain.c | 25 ++++++++++++------- security/apparmor/include/match.h | 1 + security/apparmor/include/policy.h | 1 + security/apparmor/label.c | 49 ++++++++++++++++++++++++++++---------- security/apparmor/lsm.c | 12 ++++------ security/apparmor/match.c | 12 ++++++---- security/apparmor/path.c | 6 ++--- security/apparmor/policy.c | 7 +++++- security/apparmor/policy_ns.c | 6 ++++- security/apparmor/policy_unpack.c | 3 +++ 10 files changed, 84 insertions(+), 38 deletions(-)