Vincas Dargis has proposed merging lp:~talkless/apparmor/seven_digit_pid into
lp:apparmor.
Requested reviews:
AppArmor Developers (apparmor-dev)
Related bugs:
Bug #1717714 in AppArmor: "@{pid} variable broken on systems with pid_max
more than 6 digits"
https://bugs.launchpad.net/apparmor/+bug/1717714
For more details, see:
https://code.launchpad.net/~talkless/apparmor/seven_digit_pid/+merge/331614
Allow pids up to PID_MAX_LIMIT which is 2^22 (a seven digit 4194304)
Fixes https://bugs.launchpad.net/apparmor/+bug/1717714
--
Your team AppArmor Developers is requested to review the proposed merge of
lp:~talkless/apparmor/seven_digit_pid into lp:apparmor.
=== modified file 'profiles/apparmor.d/tunables/kernelvars'
--- profiles/apparmor.d/tunables/kernelvars 2013-01-02 23:02:29 +0000
+++ profiles/apparmor.d/tunables/kernelvars 2017-09-30 12:31:56 +0000
@@ -13,7 +13,7 @@
# and until the parser supports nested groupings like
# @{pid}=[1-9]{[0-9]{[0-9]{[0-9]{[0-9]{[0-9],},},},},}
# use
-@{pid}={[1-9],[1-9][0-9],[1-9][0-9][0-9],[1-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9][0-9]}
+@{pid}={[1-9],[1-9][0-9],[1-9][0-9][0-9],[1-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9],[1-9][0-9][0-9][0-9][0-9][0-9],[1-4][0-9][0-9][0-9][0-9][0-9][0-9]}
#same pattern as @{pid} for now
@{tid}=@{pid}
--
AppArmor mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/apparmor
