[SRU][N][Patch 0/1] UBUNTU: SAUCE: fix: apparmor4.0.0 [26/90]: LSM
John Johansen
john.johansen at canonical.com
Mon Oct 6 14:11:42 UTC 2025
SRU Justification:
[Impact]
* When auditd is installed and audit rules are used the console can be
flooded with the error message.
error in audit_log_object_context
[Fix]
* The fix is backported from
5ba569134855 https://github.com/cschaufler/lsm-stacking.
This is the development upstream for the out of tree LSM stacking
patch series.
* The fix is also carried the Oracular 6.14 kernel in its version of the patch
commit 28b69ac0e2fc ("UBUNTU: SAUCE: apparmor4.0.0 [25/99]: Audit: Add record for multiple object contexts")
Specifically the fix changes the test for failure on the result from
security_secid_to_secctx(), which on success returns a size and on
failure returns an error.
[Test Plan]
* Install audit
* ensure AppArmor is enabled by running aa-enabled
* Add the audit rule
auditctl -a always,exit -S execve -k all_execs
* run applications, or shell commands
If the fix is not applied each application or command run with result
in a message to the console. If the console is not displaying the
error message
error in audit_log_object_context
the fix is working.
[Where problems could occur]
* The regression can be considered as low, since: the fix is already
integrated into in the plucky 6.14, and questing 6.16/6.17 kernels
without reported issues.
More information about the kernel-team
mailing list