[PATCH 0/2][X/Y SRU] Quiet noisy LSM denial when accessing net sysctl
Kamal Mostafa
kamal at canonical.com
Thu Jun 2 14:23:40 UTC 2016
On Tue, May 31, 2016 at 09:43:42PM -0500, Tyler Hicks wrote:
> BugLink: https://bugs.launchpad.net/bugs/1465724
>
> SRU Justification:
>
> Impact: A noisy AppArmor denial is reported to the system logs when a go
> program is run as a privileged user. The denial is non-fatal [...]
> These two patches have been submitted upstream and acked by Serge:
>
> http://thread.gmane.org/gmane.linux.kernel.lsm/27927
>
> They have not yet pulled in by the security subsystem maintainer but I
> have no reason to believe that they won't be soon.
Hi Tyler-
I'd sure like to see some indication that they _will_ be pulled into
mainline...
Has there been any further discussion of these patches since your May 17
message "Hi James - Could you pick up these two bug fix patches?"?
-Kamal
>
> The bug affects all of our currently supported kernels but I'm only
> requesting an SRU for Xenial (and for the patches to be applied to
> Yakkety) because it is only a high priority bug on kernels that launch
> snaps. An upcoming change to the snap launching code has the potential to
> trigger this denial on every snap launch so I'm fast-pathing this bug fix
> instead of waiting on it to be applied upstream.
>
> Tyler
More information about the kernel-team
mailing list