XPost: linux.debian.bugs.dist
From: carnil@debian.org

Hi John,

On Tue, Jun 03, 2025 at 02:36:49PM -0700, John Johansen wrote:

On 6/3/25 14:03, Salvatore Bonaccorso wrote:

Control: tags -1 + moreinfo

Hi Laurent,

On Tue, Jun 03, 2025 at 05:14:12PM +0200, Laurent Bigonville wrote:

reopen 872726
found 872726 6.12.30-1
thanks

You reopened this very old issue. I see two aspects: We do not want to
have bugs opened forever if there is no chance of a respective
upstream change fixing the issue.

So with this in mind I think it would be great if you can try to
respin the convesation with upstream and see if there is movement on
this topic.

Otherwise, if there is no chance to implement this, we can mark it
wontfix (and so this time with an explanation ;-)) and then close and archive it again.

In short: any chance you can try to reach out to upstream for a
current state on this topic and loop us back?

Yes we can try, and honestly we need to try because this is going to
become more problematic when we start stacking apparmor with selinux
as more than just a demo.

We are about 20 patches away from the upstream kernel being able to
do this. It will be a few weeks before we can even get to trying this
but I will add it to the queue of tickets. Maybe I can even get some
priority on it by tying it to our work to get apparmor available in
fedora

Do you have a reference were we can point at this bug for following
the current status?

Regards,
Salvatore

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)

XPost: linux.debian.bugs.dist
From: ben@decadent.org.uk

Control: tag -1 wontfix
Control: close -1

On Wed, 2025-06-18 at 18:12 +0200, Uwe Kleine-König wrote:

Hello John,

On Tue, Jun 03, 2025 at 02:36:49PM -0700, John Johansen wrote:

[...]

We are about 20 patches away from the upstream kernel being able to
do this. It will be a few weeks before we can even get to trying this
but I will add it to the queue of tickets. Maybe I can even get some priority on it by tying it to our work to get apparmor available in
fedora

I have the impression you work with upstream on that issue and while the
bug report is correct there is no need for the Debian kernel team to get active, right? And the impact for Debian users is practically void until there is a kernel which allows to use apparmor and selinux together?

In that case I see little benefit to keep this bug open, given that the
only action needed here is tracking when it's fixed upstream and add a
bug closer to d/changelog then.

[...]

I agree this doesn't need to be kept open.

This change isn't going to happen in Debian unless and until it is
changed upstream. And no-one on the Debian kernel team seems to be in a position to help with the upstream change, unfortunately.

Ben.

--
Ben Hutchings
Design a system any fool can use, and only a fool will want to use it.

-----BEGIN PGP SIGNATURE-----

iQIzBAABCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAmhTRq8ACgkQ57/I7JWG EQndJBAA0u5dSm6Zz0MP3PlsoN0rV5UNyIGTYe5S3U3UyeCZfT46vuACEmqtnmzO 4zcagTjjQ+R23mrAA2YyIsL2JYTOwjmChA5fF88lwAi5LzOGu7NLh1rFOlv4qqYK CTxP/1SY3y1k7SjhP3eTiIsTNsy0Bwd0pau0ujjNf2xr9BOiD6yH14qwJSnMFtKB Ddm7lhiLnwqIc+92m2FjR20VdFnT1TOq9gMX7T6R6sgU5rto9UnKfkTsiyX3AXBA St97zfh2pJ3SEaureG0d9y5Uv6ZO9a3hkKZ34IlglmDe1/Qf6Uz0iH/45dZiEIaY H1UPmb9l0zWiFsxqGNnExjZ8Bf6SIHrO7uwFMO0QzkbhCBls5K38F6ynOJFI+u2q T/+wH5M0gVzgUrmAjxTsjshkdtwPRU8T/U765i+9PjoMG2z0aja4Ky/vK9bmAcDE twSzH58eUXxUvZgFxXKTx+osJ8CDUGVDe2b5O51VzpaKSvjj0glb73tfJfipeVqF wTQmTKHHjgZLpneYVbHn0zjqDRUYTyW/bsaajmgPE3qv0YdHTLATbYgKfTt21Fr/ xmAPEQk9IFrOMQKLN7khUT3+/NDysgGEj1Z4lrAxX7qa1F1wksvrkjI5iXoB9OhQ 0EjBuReSF71LrN/e+jwDgnV2CA49QZkB/e5dUfqz7qhw616L37I=
=3Yqx
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you ha