Remove references to 4.14 AppArmor patching
The AppArmor issue was due to a RC userspace breakage, which has been restore before the 4.14 release version: - http://lkml.iu.edu/hypermail/linux/kernel/1710.3/03798.html - http://lkml.iu.edu/hypermail/linux/kernel/1710.3/02474.html
This commit is contained in:
parent
02dede88a3
commit
9a38bd5640
|
@ -67,9 +67,6 @@ For the ipts_firmware files, please select the version for your device.
|
||||||
|
|
||||||
### NOTES
|
### NOTES
|
||||||
|
|
||||||
If your network won't connect on the 4.14.x series, you need to apply the apparmor-fix-4.14.patch file in /etc/:
|
|
||||||
* $ cd /etc/ && sudo patch -p1 < /path/to/apparmor-fix-4.14.patch
|
|
||||||
|
|
||||||
If you are getting stuck at boot when loading the ramdisk, you need to install the Processor Microcode Firmware for Intel CPUs (usually found under Additional Drivers in Software and Updates).
|
If you are getting stuck at boot when loading the ramdisk, you need to install the Processor Microcode Firmware for Intel CPUs (usually found under Additional Drivers in Software and Updates).
|
||||||
|
|
||||||
### Donations Appreciated!
|
### Donations Appreciated!
|
||||||
|
|
|
@ -1,47 +0,0 @@
|
||||||
diff --git a/apparmor.d/abstractions/nameservice b/apparmor.d/abstractions/nameservice
|
|
||||||
index 12ea151..a26c10d 100644
|
|
||||||
--- a/apparmor.d/abstractions/nameservice
|
|
||||||
+++ b/apparmor.d/abstractions/nameservice
|
|
||||||
@@ -94,6 +94,12 @@
|
|
||||||
network inet dgram,
|
|
||||||
network inet6 dgram,
|
|
||||||
|
|
||||||
+ # TODO: replace with more specific "unix" rules once support for them
|
|
||||||
+ # arrives in the Linux kernel (probably in 4.15) and gives us detailed
|
|
||||||
+ # log messages
|
|
||||||
+ network unix dgram,
|
|
||||||
+ network unix stream,
|
|
||||||
+
|
|
||||||
# TODO: adjust when support finer-grained netlink rules
|
|
||||||
# Netlink raw needed for nscd
|
|
||||||
network netlink raw,
|
|
||||||
diff --git a/apparmor.d/sbin.dhclient b/apparmor.d/sbin.dhclient
|
|
||||||
index 1064e25..f432bf3 100644
|
|
||||||
--- a/apparmor.d/sbin.dhclient
|
|
||||||
+++ b/apparmor.d/sbin.dhclient
|
|
||||||
@@ -17,6 +17,9 @@
|
|
||||||
network packet,
|
|
||||||
network raw,
|
|
||||||
|
|
||||||
+ network unix dgram,
|
|
||||||
+ network unix stream,
|
|
||||||
+
|
|
||||||
@{PROC}/[0-9]*/net/ r,
|
|
||||||
@{PROC}/[0-9]*/net/** r,
|
|
||||||
|
|
||||||
@@ -90,12 +93,15 @@
|
|
||||||
|
|
||||||
/run/NetworkManager/private-dhcp rw,
|
|
||||||
signal (send) peer=/sbin/dhclient,
|
|
||||||
+ signal (send) peer=dhclient,
|
|
||||||
|
|
||||||
/var/lib/NetworkManager/*lease r,
|
|
||||||
signal (receive) peer=/usr/sbin/NetworkManager,
|
|
||||||
ptrace (readby) peer=/usr/sbin/NetworkManager,
|
|
||||||
network inet dgram,
|
|
||||||
network inet6 dgram,
|
|
||||||
+
|
|
||||||
+ network unix stream,
|
|
||||||
}
|
|
||||||
|
|
||||||
/usr/lib/connman/scripts/dhclient-script {
|
|
Loading…
Reference in a new issue