[pve-devel] applied: [PATCH lxc 0/3] AppArmor feature set pinning
Wolfgang Bumiller
w.bumiller at proxmox.com
Mon Mar 5 14:52:18 CET 2018
applied
On Mon, Mar 05, 2018 at 12:34:03PM +0100, Fabian Grünbichler wrote:
> this patch series adds a 4.13.13-6-pve compatible AA feature set to the lxc-pve
> package, replacing the one contained in apparmor >= 2.11.0-3+deb9u2 via
> dpkg-divert. the latter pins AA features to those offered by Debian Stretch's
> 4.9-based kernel, which lacks many features we depend on in our LXC AA
> profiles.
>
> this effectively reverts to the < 2.11.0-3+deb9u2 state (all features supported
> by the current kernel are enabled), but requires future updates for new
> features on the kernel side once we want to use them.
>
> apparmor 2.11.0-3+deb9u2 is slated for inclusion in the next Debian Stretch
> point release this Saturday, so this needs to hit pve-enterprise this week!
>
> Fabian Grünbichler (3):
> add AA feature set for 4.13.13-6-pve
> replace AA's feature-set with custom one
> bump version to 2.1.1-3
>
> Makefile | 2 +-
> debian/changelog | 6 +++++
> debian/features | 66 ++++++++++++++++++++++++++++++++++++++++++++++++++
> debian/lxc-pve.install | 1 +
> debian/lxc-pve.postrm | 23 ++++++++++++++++++
> debian/lxc-pve.preinst | 25 +++++++++++++++++++
> 6 files changed, 122 insertions(+), 1 deletion(-)
> create mode 100644 debian/features
> create mode 100644 debian/lxc-pve.postrm
> create mode 100644 debian/lxc-pve.preinst
>
> --
> 2.14.2
More information about the pve-devel
mailing list