apparmor

mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00

History

John Johansen 8f6d94bf44 Update base network mediation patch with missing feature pinning fixup apparmor: fix regression in network mediation when using feature pinning When the 4.14-rc6 and earlier kernels are used with an upstream 4.13 or earlier pinned feature set, there is a regression in network mediation where policy is not being correctly enforced, because the compilation is completely dropping the af mediation table as expected by pre 4.14 kernels but the 4.14 kernel is not accounting for this. Resulting in network denials that can not be fixed by policy. Signed-off-by: John Johansen <john.johansen@canonical.com>	2018-02-01 09:39:19 +01:00
..
0001-apparmor-add-base-infastructure-for-socket-mediation.patch	Update base network mediation patch with missing feature pinning fixup	2018-02-01 09:39:19 +01:00
0002-apparmor-af_unix-mediation.patch	Update base network mediation patch with missing feature pinning fixup	2018-02-01 09:39:19 +01:00

John Johansen 8f6d94bf44 Update base network mediation patch with missing feature pinning fixup

apparmor: fix regression in network mediation when using feature pinning

When the 4.14-rc6 and earlier kernels are used with an upstream 4.13
or earlier pinned feature set, there is a regression in network
mediation where policy is not being correctly enforced, because the
compilation is completely dropping the af mediation table as expected
by pre 4.14 kernels but the 4.14 kernel is not accounting for this.

Resulting in network denials that can not be fixed by policy.

Signed-off-by: John Johansen <john.johansen@canonical.com>

2018-02-01 09:39:19 +01:00

0001-apparmor-add-base-infastructure-for-socket-mediation.patch

Update base network mediation patch with missing feature pinning fixup

2018-02-01 09:39:19 +01:00

0002-apparmor-af_unix-mediation.patch

Update base network mediation patch with missing feature pinning fixup

2018-02-01 09:39:19 +01:00