yakkety: pull-request apparmor: check point/restore support for lxc/lxd

John Johansen john.johansen at canonical.com
Wed Sep 28 21:11:28 UTC 2016 

please pull the following set of patches for apparmor

They add checkpoint/restore support to apparmor to support lxc/d for
https://bugs.launchpad.net/snappy/+bug/1611078

---

The following changes since commit fef251ab034337890a085831eaf1ef624d93609e:

  UBUNTU: [Config] CONFIG_ZONE_DMA=y for generic (2016-09-28 10:18:28 -0600)

are available in the git repository at:

  ssh://kernel.ubuntu.com/srv/kernel.ubuntu.com/git/jj/ubuntu-yakkety.git v4.8-aa3.5

for you to fetch changes up to 8a419831c3839815881f548a527f111708540767:

  apparmor: bump domain stacking version to 1.2 (2016-09-28 14:01:38 -0700)

----------------------------------------------------------------
John Johansen (11):
      apparmor: add interface to be able to grab loaded policy
      securityfs: update interface to allow inode_ops, and setup from vfs fns
      apparmor: refactor aa_prepare_ns into prepare_ns and create_ns routines
      apparmor: add __aa_find_ns fn
      apparmor: add mkdir/rmdir interface to manage policy namespaces
      apparmor: fix oops in pivot_root mediation
      apparmor: fix warning that fn build_pivotroot discards const
      apparmor: add interface to advertise status of current task stacking
      apparmor: update policy permissions to consider ns being viewed/managed
      apparmor: add per ns policy management interface
      apparmor: bump domain stacking version to 1.2

 include/linux/security.h                  |  32 +-
 security/apparmor/apparmorfs.c            | 502 +++++++++++++++++++++++++++---
 security/apparmor/crypto.c                |  37 +++
 security/apparmor/include/apparmorfs.h    |  14 +-
 security/apparmor/include/crypto.h        |   5 +
 security/apparmor/include/policy.h        |  14 +-
 security/apparmor/include/policy_ns.h     |  23 ++
 security/apparmor/include/policy_unpack.h |  27 +-
 security/apparmor/lsm.c                   |  22 +-
 security/apparmor/mount.c                 |   9 +-
 security/apparmor/policy.c                |  57 ++--
 security/apparmor/policy_ns.c             | 110 ++++---
 security/apparmor/policy_unpack.c         |  29 +-
 security/inode.c                          | 103 ++++--
 14 files changed, 824 insertions(+), 160 deletions(-)

More information about the kernel-team mailing list