[Bug 218961] New: AppArmor cannot configure audit capabilities
https://bugzilla.novell.com/show_bug.cgi?id=218961 Summary: AppArmor cannot configure audit capabilities Product: openSUSE 10.2 Version: Beta 1 plus Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: AppArmor AssignedTo: jjohansen@novell.com ReportedBy: seth.arnold@novell.com QAContact: dreynolds@novell.com The Linux kernel supports two capabilities that aren't yet in the AppArmor parser or AppArmor kernel source: CAP_AUDIT_WRITE CAP_AUDIT_CONTROL -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 jjohansen@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 ------- Comment #1 from sbeattie@novell.com 2006-11-21 11:36 MST ------- The userspace parser has been fixed in beta2plus. The kernel side enforcement was always in place; however the apparmor kernel module needed a fix to report the additional capabilities correctly. I don't think the fix for that made it into the beta2plus kernel. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 ------- Comment #2 from jjohansen@novell.com 2006-11-21 11:51 MST ------- The kernel module patch was handed off to tonyj for submission. tonyj indicated he would would look at the patch for inclusion. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 seth.arnold@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |tonyj@novell.com ------- Comment #3 from seth.arnold@novell.com 2007-01-02 12:14 MST ------- Tony, any chance that John's patch to extend AppArmor's capabilities names can be included into the kernel codelines that support these additional capabilities? Users have reported problems with 10.2, as shipped, but I don't presume that is the only kernel branch that has mismatched capabilities between the kernel's #defines and AppArmor's strings. Thanks -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 ------- Comment #4 from jjohansen@novell.com 2007-01-04 14:40 MST ------- The AUDIT_WRITE and AUDIT_CONTROL capabilities were added in 2.6.11 so this affects most branches. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 jjohansen@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- OtherBugsDependingO| |233768 nThis| | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=218961 jjohansen@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED ------- Comment #5 from jjohansen@novell.com 2007-02-05 17:58 MST ------- fixed in 10.3 alpha 3 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com