Ubuntu
sssd package

Merge ~michal-maloszewski99/ubuntu/+source/sssd:sssd-jammy-missing-lines-in-apparmor into ubuntu/+source/sssd:ubuntu/jammy-devel

  1. Git
  2. lp:~michal-maloszewski99/ubuntu/+source/sssd
  3. sssd-jammy-missing-lines-in-apparmor
  4. Merge into ubuntu/jammy-devel
Proposed by Michał Małoszewski
Status: Needs review
Proposed branch: ~michal-maloszewski99/ubuntu/+source/sssd:sssd-jammy-missing-lines-in-apparmor
Merge into: ubuntu/+source/sssd:ubuntu/jammy-devel
Diff against target: 53 lines (+12/-1)
2 files modified
debian/apparmor-profile (+4/-1)
debian/changelog (+8/-0)
Reviewer Review Type Date Requested Status
Lucas Kanashiro (community) Needs Information
git-ubuntu import Pending
Review via email: mp+453061@code.launchpad.net
To post a comment you must log in.
Revision history for this message
Michał Małoszewski (michal-maloszewski99) wrote :

Results: (from http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/?format=plain)
  sssd @ amd64:
    http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/jammy/amd64/s/sssd/20231006_191528_6197a@/log.gz
    06.10.23 19:15:28 ✅ Triggers: sssd/2.6.3-1ubuntu3.3~ppa1
  sssd @ arm64:
    http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/jammy/arm64/s/sssd/20231006_192235_94562@/log.gz
    06.10.23 19:22:35 ✅ Triggers: sssd/2.6.3-1ubuntu3.3~ppa1
  sssd @ armhf:
    http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/jammy/armhf/s/sssd/20231006_192345_7926f@/log.gz
    06.10.23 19:23:45 ✅ Triggers: sssd/2.6.3-1ubuntu3.3~ppa1
  sssd @ ppc64el:
    http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/jammy/ppc64el/s/sssd/20231006_191817_0c075@/log.gz
    06.10.23 19:18:17 ✅ Triggers: sssd/2.6.3-1ubuntu3.3~ppa1
  sssd @ s390x:
    http://autopkgtest.ubuntu.com/results/autopkgtest-jammy-michal-maloszewski99-ppa-1999190-sssd/jammy/s390x/s/sssd/20231006_191639_91320@/log.gz
    06.10.23 19:16:39 ✅ Triggers: sssd/2.6.3-1ubuntu3.3~ppa1
Running: (none)
Waiting: (none)

Reply
Revision history for this message
Michał Małoszewski (michal-maloszewski99) wrote :

Please review.

Reply
Revision history for this message
Lucas Kanashiro (lucaskanashiro) wrote :

Sergio's thoughts about this on MM: "this went into Mantic, but that's because it hadn't been released yet. I'm not sure if it's worth going through an SRU only for such a minor change; IMHO, this should be merged into a bigger SRU for sssd (when that eventually happens)".

Due to that, I am flagging this as Needs Information until we discuss this internally in the Server team.

review: Needs Information
Reply

Unmerged commits

7de2b51... by Michał Małoszewski

changelog

6cad1ff... by Michał Małoszewski

Missing lines in apparmor config for sssd

* d/apparmor-profile: Add some entries to apparmor-profile file
  to get rid of the extraneous ALLOWED messages visible in the
  /var/log/syslog. (LP: #1999190)

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1diff --git a/debian/apparmor-profile b/debian/apparmor-profile
2index fadfa6c..7491662 100644
3--- a/debian/apparmor-profile
4+++ b/debian/apparmor-profile
5@@ -4,6 +4,7 @@
6 #include <abstractions/base>
7 #include <abstractions/kerberosclient>
8 #include <abstractions/nameservice>
9+ #include <abstractions/openssl>
10 #include <abstractions/user-tmp>
11
12 capability chown,
13@@ -16,6 +17,7 @@
14 capability sys_resource,
15
16 @{PROC} r,
17+ @{PROC}/[0-9]*/cmdline r,
18 @{PROC}/[0-9]*/net/psched r,
19 @{PROC}/[0-9]*/status r,
20
21@@ -42,7 +44,7 @@
22 /var/lib/sss/* rw,
23 /var/lib/sss/db/* rwk,
24 /var/lib/sss/gpo_cache/* rw,
25- /var/lib/sss/mc/* rw,
26+ /var/lib/sss/mc/* rwk,
27 /var/lib/sss/pipes/* rw,
28 /var/lib/sss/pipes/private/* rw,
29 /var/lib/sss/pubconf/* rw,
30@@ -53,6 +55,7 @@
31
32 /{,var/}run/sssd.pid rw,
33 /{,var/}run/systemd/notify w,
34+ /{,var/}run/systemd/users/* r,
35
36 # Site-specific additions and overrides. See local/README for details.
37 #include <local/usr.sbin.sssd>
38diff --git a/debian/changelog b/debian/changelog
39index d603b87..9a1976f 100644
40--- a/debian/changelog
41+++ b/debian/changelog
42@@ -1,3 +1,11 @@
43+sssd (2.6.3-1ubuntu3.3) jammy; urgency=medium
44+
45+ * d/apparmor-profile: Add some entries to apparmor-profile file
46+ to get rid of the extraneous ALLOWED messages visible in the
47+ /var/log/syslog. (LP: #1999190)
48+
49+ -- Michal Maloszewski <michal.maloszewski@canonical.com> Fri, 06 Oct 2023 17:07:25 +0200
50+
51 sssd (2.6.3-1ubuntu3.2) jammy; urgency=medium
52
53 * d/p/initialize-uid-gid-main-functions.patch: Initialize UID/GID

Subscribers

People subscribed via source and target branches