# git rev-parse -q --verify 6bdfe2d88b9ff8b0cce32ce87cd47c0e9d665f48^{commit} 6bdfe2d88b9ff8b0cce32ce87cd47c0e9d665f48 already have revision, skipping fetch # git checkout -q -f -B kisskb 6bdfe2d88b9ff8b0cce32ce87cd47c0e9d665f48 # git clean -qxdf # < git log -1 # commit 6bdfe2d88b9ff8b0cce32ce87cd47c0e9d665f48 # Merge: 136cc1e1f5be 6cede10161be # Author: Linus Torvalds # Date: Fri Nov 3 09:48:17 2023 -1000 # # Merge tag 'apparmor-pr-2023-11-03' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor # # Pull apparmor updates from John Johansen: # "This adds initial support for mediating io_uring and userns creation. # Adds a new restriction that tightens the use of change_profile, and a # couple of optimizations to reduce performance bottle necks that have # been found when retrieving the current task's secid and allocating # work buffers. # # The majority of the patch set continues cleaning up and simplifying # the code (fixing comments, removing now dead functions, and macros # etc). Finally there are 4 bug fixes, with the regression fix having # had a couple months of testing. # # Features: # - optimize retrieving current task secid # - add base io_uring mediation # - add base userns mediation # - improve buffer allocation # - allow restricting unprivilege change_profile # # Cleanups: # - Fix kernel doc comments # - remove unused declarations # - remove unused functions # - remove unneeded #ifdef # - remove unused macros # - mark fns static # - cleanup fn with unused return values # - cleanup audit data # - pass cred through to audit data # - refcount the pdb instead of using duplicates # - make SK_CTX macro an inline fn # - some comment cleanups # # Bug fixes: # - fix regression in mount mediation # - fix invalid refenece # - use passed in gfp flags # - advertise avaiability of extended perms and disconnected.path" # # * tag 'apparmor-pr-2023-11-03' of git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor: (39 commits) # apparmor: Fix some kernel-doc comments # apparmor: Fix one kernel-doc comment # apparmor: Fix some kernel-doc comments # apparmor: mark new functions static # apparmor: Fix regression in mount mediation # apparmor: cache buffers on percpu list if there is lock contention # apparmor: add io_uring mediation # apparmor: add user namespace creation mediation # apparmor: allow restricting unprivileged change_profile # apparmor: advertise disconnected.path is available # apparmor: refcount the pdb # apparmor: provide separate audit messages for file and policy checks # apparmor: pass cred through to audit info. # apparmor: rename audit_data->label to audit_data->subj_label # apparmor: combine common_audit_data and apparmor_audit_data # apparmor: rename SK_CTX() to aa_sock and make it an inline fn # apparmor: Optimize retrieving current task secid # apparmor: remove unused functions in policy_ns.c/.h # apparmor: remove unneeded #ifdef in decompress_zstd() # apparmor: fix invalid reference on profile->disconnected # ... # < /opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux-gcc --version # < /opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux-ld --version # < git log --format=%s --max-count=1 6bdfe2d88b9ff8b0cce32ce87cd47c0e9d665f48 # make -s -j 40 ARCH=um O=/kisskb/build/linus_allyesconfig_um-x86_64-gcc12 CROSS_COMPILE=/opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux- SUBARCH=x86_64 allyesconfig # Added to kconfig CONFIG_STANDALONE=y # Added to kconfig CONFIG_KCOV=n # Added to kconfig CONFIG_GCC_PLUGINS=n # Added to kconfig CONFIG_GCC_PLUGIN_CYC_COMPLEXITY=n # Added to kconfig CONFIG_GCC_PLUGIN_SANCOV=n # Added to kconfig CONFIG_GCC_PLUGIN_LATENT_ENTROPY=n # Added to kconfig CONFIG_GCC_PLUGIN_STRUCTLEAK=n # Added to kconfig CONFIG_GCC_PLUGIN_RANDSTRUCT=n # Added to kconfig CONFIG_UML_NET=n # Added to kconfig CONFIG_UML_NET_ETHERTAP=n # Added to kconfig CONFIG_UML_NET_TUNTAP=n # Added to kconfig CONFIG_UML_NET_SLIP=n # Added to kconfig CONFIG_UML_NET_DAEMON=n # Added to kconfig CONFIG_UML_NET_VDE=n # Added to kconfig CONFIG_UML_NET_MCAST=n # Added to kconfig CONFIG_UML_NET_PCAP=n # Added to kconfig CONFIG_UML_NET_SLIRP=n # Added to kconfig CONFIG_GCOV_KERNEL=n # Added to kconfig CONFIG_DEBUG_INFO_BTF=n # Added to kconfig CONFIG_BPF_PRELOAD=n # Added to kconfig CONFIG_SPI_STM32_QSPI=n # < make -s -j 40 ARCH=um O=/kisskb/build/linus_allyesconfig_um-x86_64-gcc12 CROSS_COMPILE=/opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux- SUBARCH=x86_64 help # make -s -j 40 ARCH=um O=/kisskb/build/linus_allyesconfig_um-x86_64-gcc12 CROSS_COMPILE=/opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux- SUBARCH=x86_64 olddefconfig .config:14351:warning: override: reassigning to symbol GCC_PLUGIN_LATENT_ENTROPY .config:14355:warning: override: reassigning to symbol UML_NET_ETHERTAP .config:14357:warning: override: reassigning to symbol UML_NET_SLIP .config:14362:warning: override: reassigning to symbol UML_NET_SLIRP # make -s -j 40 ARCH=um O=/kisskb/build/linus_allyesconfig_um-x86_64-gcc12 CROSS_COMPILE=/opt/cross/kisskb/x86-64--glibc--bleeding-edge-2022.08-1/bin/x86_64-linux- SUBARCH=x86_64 LINK linux Completed OK # rm -rf /kisskb/build/linus_allyesconfig_um-x86_64-gcc12 # Build took: 0:11:53.918914