Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-06-02 Thread James Morris
On Thu, 2 Jun 2016, Tyler Hicks wrote: > On 05/17/2016 09:13 AM, Tyler Hicks wrote: > > On 05/08/2016 10:56 PM, David Miller wrote: > >> From: Tyler Hicks > >> Date: Fri, 6 May 2016 18:04:12 -0500 > >> > >>> This pair of patches does away with what I believe is a useless

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-06-02 Thread James Morris
On Thu, 2 Jun 2016, Tyler Hicks wrote: > On 05/17/2016 09:13 AM, Tyler Hicks wrote: > > On 05/08/2016 10:56 PM, David Miller wrote: > >> From: Tyler Hicks > >> Date: Fri, 6 May 2016 18:04:12 -0500 > >> > >>> This pair of patches does away with what I believe is a useless denial > >>> audit

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-06-02 Thread Tyler Hicks
On 05/17/2016 09:13 AM, Tyler Hicks wrote: > On 05/08/2016 10:56 PM, David Miller wrote: >> From: Tyler Hicks >> Date: Fri, 6 May 2016 18:04:12 -0500 >> >>> This pair of patches does away with what I believe is a useless denial >>> audit message when a privileged process

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-06-02 Thread Tyler Hicks
On 05/17/2016 09:13 AM, Tyler Hicks wrote: > On 05/08/2016 10:56 PM, David Miller wrote: >> From: Tyler Hicks >> Date: Fri, 6 May 2016 18:04:12 -0500 >> >>> This pair of patches does away with what I believe is a useless denial >>> audit message when a privileged process initially accesses a net

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-17 Thread Tyler Hicks
On 05/08/2016 10:56 PM, David Miller wrote: > From: Tyler Hicks > Date: Fri, 6 May 2016 18:04:12 -0500 > >> This pair of patches does away with what I believe is a useless denial >> audit message when a privileged process initially accesses a net sysctl. > > The LSM

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-17 Thread Tyler Hicks
On 05/08/2016 10:56 PM, David Miller wrote: > From: Tyler Hicks > Date: Fri, 6 May 2016 18:04:12 -0500 > >> This pair of patches does away with what I believe is a useless denial >> audit message when a privileged process initially accesses a net sysctl. > > The LSM folks can apply this if

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-08 Thread David Miller
From: Tyler Hicks Date: Fri, 6 May 2016 18:04:12 -0500 > This pair of patches does away with what I believe is a useless denial > audit message when a privileged process initially accesses a net sysctl. The LSM folks can apply this if they agree with you.

Re: [PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-08 Thread David Miller
From: Tyler Hicks Date: Fri, 6 May 2016 18:04:12 -0500 > This pair of patches does away with what I believe is a useless denial > audit message when a privileged process initially accesses a net sysctl. The LSM folks can apply this if they agree with you.

[PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-06 Thread Tyler Hicks
This pair of patches does away with what I believe is a useless denial audit message when a privileged process initially accesses a net sysctl. The bug was first discovered when running Go applications under AppArmor confinement. It can be triggered like so: $ echo "profile test { file, }" |

[PATCH 0/2] Quiet noisy LSM denial when accessing net sysctl

2016-05-06 Thread Tyler Hicks
This pair of patches does away with what I believe is a useless denial audit message when a privileged process initially accesses a net sysctl. The bug was first discovered when running Go applications under AppArmor confinement. It can be triggered like so: $ echo "profile test { file, }" |