[Oneiric][Patch 0/13] AppArmor update for Oneiric

Tim Gardner tim.gardner at canonical.com
Thu Aug 11 15:16:50 UTC 2011 

On 08/10/2011 11:02 PM, John Johansen wrote:
> The following patch series reverts and updates the compatibility patches
> along with adding new functionality for oneiric.
>
> The following changes since commit 7731cf0ecf5412872d5a4a25ab3ace22690f4408:
>
>    UBUNTU: Ubuntu-3.0.0-8.10 (2011-08-05 11:33:35 -0700)
>
> are available in the git repository at:
>    git://kernel.ubuntu.com/jj/ubuntu-oneiric.git apparmor
>
> John Johansen (13):
>        Revert "UBUNTU: SAUCE: AppArmor: Fix unpack of network tables."
>        Revert "AppArmor: compatibility patch for v5 interface"
>        Revert "AppArmor: compatibility patch for v5 network controll"
>        Revert "UBUNTU: SAUCE: AppArmor: Allow dfa backward compatibility with broken userspace"
>        AppArmor: compatibility patch for v5 network controll
>        AppArmor: compatibility patch for v5 interface
>        AppArmor: Allow dfa backward compatibility with broken userspace
>        AppArmor: add utility function to get an arbitrary tasks profile.
>        AppArmor: Relax the restrictions on setting rlimits
>        AppArmor: Add kvzalloc to handle zeroing for kvmalloc
>        AppArmor: Allow loading of policy containing generic policy dfa
>        AppArmor: Remove "permipc" command
>        AppArmor: add support for generic perm query again current profile
>
>   security/apparmor/Makefile           |   22 ++++++++++++----
>   security/apparmor/apparmorfs-24.c    |    2 +-
>   security/apparmor/apparmorfs.c       |    2 +-
>   security/apparmor/context.c          |   17 +++++++++++++
>   security/apparmor/domain.c           |   10 ++-----
>   security/apparmor/file.c             |    2 +-
>   security/apparmor/include/apparmor.h |   12 ++++++++-
>   security/apparmor/include/context.h  |   44 +++++++++++++++++++++------------
>   security/apparmor/include/file.h     |    2 +
>   security/apparmor/include/policy.h   |    4 +++
>   security/apparmor/include/procattr.h |    2 +-
>   security/apparmor/ipc.c              |   13 +++-------
>   security/apparmor/lib.c              |    7 +++--
>   security/apparmor/lsm.c              |   14 ++++++----
>   security/apparmor/match.c            |    2 +-
>   security/apparmor/policy.c           |    1 +
>   security/apparmor/policy_unpack.c    |   11 ++++++++
>   security/apparmor/procattr.c         |   34 ++++++++++++++++++++++++--
>   security/apparmor/resource.c         |   11 ++++++--
>   19 files changed, 153 insertions(+), 59 deletions(-)
>
>

What is the state of these patches with respect to upstream review? Have 
they landed in Morris' tree at least? linux-next ?

I think 'AppArmor: Add kvzalloc to handle zeroing for kvmalloc' is 
completely mis-described.

rtg
-- 
Tim Gardner tim.gardner at canonical.com

More information about the kernel-team mailing list