[PATCH 0/2][X/Y SRU] Quiet noisy LSM denial when accessing net sysctl
Tyler Hicks
tyhicks at canonical.com
Thu Jun 2 16:32:02 UTC 2016
On 06/02/2016 09:23 AM, Kamal Mostafa wrote:
> On Tue, May 31, 2016 at 09:43:42PM -0500, Tyler Hicks wrote:
>> BugLink: https://bugs.launchpad.net/bugs/1465724
>>
>> SRU Justification:
>>
>> Impact: A noisy AppArmor denial is reported to the system logs when a go
>> program is run as a privileged user. The denial is non-fatal [...]
>
>> These two patches have been submitted upstream and acked by Serge:
>>
>> http://thread.gmane.org/gmane.linux.kernel.lsm/27927
>>
>> They have not yet pulled in by the security subsystem maintainer but I
>> have no reason to believe that they won't be soon.
>
> Hi Tyler-
Hello!
>
> I'd sure like to see some indication that they _will_ be pulled into
> mainline...
>
> Has there been any further discussion of these patches since your May 17
> message "Hi James - Could you pick up these two bug fix patches?"?
No but I've just poked James on the list again.
Tyler
>
> -Kamal
>
>>
>> The bug affects all of our currently supported kernels but I'm only
>> requesting an SRU for Xenial (and for the patches to be applied to
>> Yakkety) because it is only a high priority bug on kernels that launch
>> snaps. An upcoming change to the snap launching code has the potential to
>> trigger this denial on every snap launch so I'm fast-pathing this bug fix
>> instead of waiting on it to be applied upstream.
>>
>> Tyler
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20160602/32101484/attachment.sig>
More information about the kernel-team
mailing list