APPLIED[C/Unstable]: [SRU][Xenial][Bionic][PATCH 1/1] UBUNTU SAUCE: apparmor: fix apparmor mediating locking non-fs, unix sockets
Seth Forshee
seth.forshee at canonical.com
Wed Aug 1 13:27:27 UTC 2018
On Mon, Jul 30, 2018 at 01:55:30PM -0700, John Johansen wrote:
> The apparmor policy language current does not allow expressing of the
> locking permission for no-fs unix sockets. However the kernel is
> enforcing mediation.
>
> Add the AA_MAY_LOCK perm to the computed perm mask which will grant
> permission for all current abi profiles, but still allow specifying
> auditing of the operation if needed.
>
> BugLink: http://bugs.launchpad.net/bugs/1780227
> Signed-off-by: John Johansen <john.johansen at canonical.com>
Applied to cosmic/master-next and unstable/master, thanks!
More information about the kernel-team
mailing list