[pkg-apparmor] Bug#712451: Please support AppArmor network rules
intrigeri
intrigeri at debian.org
Wed Jun 13 18:44:58 BST 2018
intrigeri:
> Linux v4.17-rc1 now supports basic socket mediation, which will allow
> us to close this bug report:
> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=56974a6fcfef69ee0825bd66ed13e92070ac5224
… which made it into v4.17 final :)
We could start testing our policy locally with socket
mediation enabled. To do so:
- run Linux from Debian experimental (it currently has 4.17~rc7-1~exp1)
- disable feature-set pinning or update the feature-set to enable
these new features
Also, it would be nice to test Linux 4.17 with the feature-sets we
ship in Stretch and testing/sid, in order to catch any bug like
#883703 ASAP.
I'll be very busy until DebCamp so it's unlikely I do much on this
front until then (best case I'll press the right buttons to enable
this on my own system once 4.17 is in sid, but I won't have time to
test software I don't use myself).
Anyone excited?
More information about the pkg-apparmor-team
mailing list