[pkg-apparmor] Bug#877581: Patch
intrigeri
intrigeri at debian.org
Tue Oct 10 16:49:17 UTC 2017
Control: tag -1 + pending
Hi,
Vincas Dargis:
> Indeed, with 4.14 I got my first Debian network (potential) denies (yay! :-D ):
Nice, it's good news in some way :)
> Anyway, patch suggested by Christian Boltz fixes these issues, which is attached.
Thanks. I've imported it as a quilt patch, adjusted a bit the embedded
"TODO", added a bunch of DEP-3 metadata and committed locally.
Will push to Vcs-Bzr once I get back online.
I'll try to do some testing myself with Linux 4.13 and 4.14 before
I upload, but if I don't manage to find time to test this early
enough, I'll upload anyway: your testing + Christian's input + my code
review is enough to make me confident this patch can only
improve things.
I'm a little bit curious wrt. whether this patch will be enough.
If you have extra time/desire to spend on this, you could test
profiles in the archive that don't include the nameservice abstraction
(there are some on my system) and thus won't be fixed by this patch
*if* they happen to need similar "unix" permissions.
Cheers,
--
intrigeri
More information about the pkg-apparmor-team
mailing list