commit apparmor for openSUSE:Factory

root Tue, 15 Jan 2019 04:15:12 -0800

Hello community,

here is the log from the commit of package apparmor for openSUSE:Factory 
checked in at 2019-01-15 13:15:06
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/apparmor (Old)
 and      /work/SRC/openSUSE:Factory/.apparmor.new.28833 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "apparmor"

Tue Jan 15 13:15:06 2019 rev:122 rq:663646 version:2.13.2

Changes:
--------
--- /work/SRC/openSUSE:Factory/apparmor/apparmor.changes        2019-01-08 
12:18:47.940907572 +0100
+++ /work/SRC/openSUSE:Factory/.apparmor.new.28833/apparmor.changes     
2019-01-15 13:15:07.800416476 +0100
@@ -1,0 +2,7 @@
+Sun Jan  6 19:10:58 UTC 2019 - Christian Boltz <[email protected]>
+
+- add apparmor-lessopen-nfs-workaround.diff: allow network access in
+  lessopen.sh for reading files on NFS (workaround for boo#1119937 /
+  lp#1784499)
+
+-------------------------------------------------------------------

New:
----
  apparmor-lessopen-nfs-workaround.diff

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ apparmor.spec ++++++
--- /var/tmp/diff_new_pack.eSGHIN/_old  2019-01-15 13:15:08.556415884 +0100
+++ /var/tmp/diff_new_pack.eSGHIN/_new  2019-01-15 13:15:08.560415880 +0100
@@ -69,6 +69,9 @@
 # submitted upstream 2019-01-02 - 
https://gitlab.com/apparmor/apparmor/merge_requests/296 (master + 2.13) and 
https://gitlab.com/apparmor/apparmor/merge_requests/297 (2.12)
 Patch9:         profile_filename_cornercase.diff
 
+# workaround for boo#1119937 / lp#1784499 - allow network access for reading 
files on NFS (proper solution needs kernel fix)
+Patch10:        apparmor-lessopen-nfs-workaround.diff
+
 PreReq:         sed
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 %define apparmor_bin_prefix /lib/apparmor
@@ -358,6 +361,7 @@
 %patch7
 %patch8 -p1
 %patch9 -p1
+%patch10
 
 %build
 export SUSE_ASNEEDED=0


++++++ apparmor-lessopen-nfs-workaround.diff ++++++
Index: profiles/apparmor.d/usr.bin.lessopen.sh
===================================================================
--- profiles/apparmor.d/usr.bin.lessopen.sh.orig        2019-01-06 
20:05:38.582356924 +0100
+++ profiles/apparmor.d/usr.bin.lessopen.sh     2019-01-06 20:08:26.885706133 
+0100
@@ -10,6 +10,10 @@
   capability dac_override,
   capability dac_read_search,
 
+  # workaround for https://bugzilla.opensuse.org/show_bug.cgi?id=1119937 / 
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1784499
+  network inet stream,
+  network inet6 stream,
+
   /** rk,
   /bin/bash mrix,
   /{usr/,}bin/rpm mrix,

commit apparmor for openSUSE:Factory

Reply via email to