Please unrevert the apparmor audit rule filtering feature
Bug #1898280 reported by
Jamie Strandboge
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
High
|
John Johansen |
Bug Description
Ubuntu carried a patch to apparmor for audit rule filtering, but it was reverted due to conflicts related to secids with earlier LSM stacking patchsets. The upstream LSM stacking patchset is believed to resolve these issues and groovy now carries the updated LSM stacking patchset.As such, please re-enable the audit rule filtering feature in apparmor.
CORRECTION: groovy's stacking patchset was revved but doesn't have the latest so we'd need to refresh the full stack to reenable the audit rule filtering feature.
Changed in linux (Ubuntu): | |
importance: | Undecided → High |
assignee: | nobody → John Johansen (jjohansen) |
status: | New → Triaged |
description: | updated |
description: | updated |
summary: |
- Please unrevert the audit rule filtering feature + Please unrevert the apparmor audit rule filtering feature |
Changed in linux (Ubuntu): | |
status: | In Progress → Fix Released |
To post a comment you must log in.
After more discussion with John, while groovy does have a newer stacking patchset, it doesn't have the latest patchset that resolves the audit subsystem. Unfortunately, as of today, all of those patches haven't been signed-off on yet so there might be future changes.