[GIT PULL] apparmor bug fixes for 6.5

From: John Johansen
Date: Thu Jul 06 2023 - 14:28:28 EST

Next message: William Zhang: "[PATCH v4 0/5] mtd: rawnand: brcmnand: driver and doc updates"
Previous message: Pintu Kumar: "[PATCH] mm: cma: print cma name as well in cma_alloc debug"
Next in thread: pr-tracker-bot: "Re: [GIT PULL] apparmor bug fixes for 6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Linus,

Please pull the following set bug fixes to apparmor for 6.5 or 6.5-rc1

+ Bug Fixes
- fix missing error check for rhashtable_insert_fast
- add missing failure check in compute_xmatch_perms
- fix policy_compat permission remap with extended permissions
- fix profile verification and enable it
- fix: kzalloc perms tables for shared dfas
- Fix kernel-doc header for verify_dfa_accept_index
- aa_buffer: Convert 1-element array to flexible array
- Return directly after a failed kzalloc() in two functions
- fix use of strcpy in policy_unpack_test
- fix kernel-doc complaints
- Fix some kernel-doc comments

thanks
- john

The following changes since commit 1b929c02afd37871d5afb9d498426f83432e71c2:

Linux 6.2-rc1 (2022-12-25 13:41:39 -0800)

are available in the Git repository at:

git://git.kernel.org/pub/scm/linux/kernel/git/jj/linux-apparmor tags/apparmor-pr-2023-07-06

for you to fetch changes up to 3f069c4c643225f2b96b4b3f8c30e4445f079d2e:

apparmor: Fix kernel-doc header for verify_dfa_accept_index (2023-07-06 11:12:10 -0700)

----------------------------------------------------------------
+ Bug Fixes
apparmor: fix missing error check for rhashtable_insert_fast
apparmor: add missing failure check in compute_xmatch_perms
apparmor: fix policy_compat permission remap with extended permissions
apparmor: fix profile verification and enable it
apparmor: fix: kzalloc perms tables for shared dfas
apparmor: Fix kernel-doc header for verify_dfa_accept_index
apparmor: aa_buffer: Convert 1-element array to flexible array
apparmor: Return directly after a failed kzalloc() in two functions
apparmor: fix use of strcpy in policy_unpack_test
apparmor: fix kernel-doc complaints
AppArmor: Fix some kernel-doc comments

----------------------------------------------------------------
Danila Chernetsov (1):
apparmor: fix missing error check for rhashtable_insert_fast

John Johansen (5):
apparmor: add missing failure check in compute_xmatch_perms
apparmor: fix policy_compat permission remap with extended permissions
apparmor: fix profile verification and enable it
apparmor: fix: kzalloc perms tables for shared dfas
apparmor: Fix kernel-doc header for verify_dfa_accept_index

Kees Cook (1):
apparmor: aa_buffer: Convert 1-element array to flexible array

Markus Elfring (1):
apparmor: Return directly after a failed kzalloc() in two functions

Rae Moar (1):
apparmor: fix use of strcpy in policy_unpack_test

Randy Dunlap (1):
apparmor: fix kernel-doc complaints

Yang Li (1):
AppArmor: Fix some kernel-doc comments

security/apparmor/crypto.c | 10 ++--
security/apparmor/file.c | 2 +-
security/apparmor/lsm.c | 8 +--
security/apparmor/policy.c | 20 +++++--
security/apparmor/policy_compat.c | 20 +++++--
security/apparmor/policy_unpack.c | 102 +++++++++++++++++++++------------
security/apparmor/policy_unpack_test.c | 13 ++---
security/apparmor/secid.c | 3 +-
8 files changed, 110 insertions(+), 68 deletions(-)

Next message: William Zhang: "[PATCH v4 0/5] mtd: rawnand: brcmnand: driver and doc updates"
Previous message: Pintu Kumar: "[PATCH] mm: cma: print cma name as well in cma_alloc debug"
Next in thread: pr-tracker-bot: "Re: [GIT PULL] apparmor bug fixes for 6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]