Package: tomoyo-tools Version: 2.6.0-20190305-1 Severity: wishlist X-Debbugs-Cc: alo...@gmx-topmail.de
Dear Maintainer, Linux supports LSM stacking now, and Debian's kernel in bullseye (and unstable) is configured in a way that AppArmor and TOMOYO are enabled by default. So "security=tomoyo" is not necessary to enable TOMOYO any more, it just disables AppArmor needlessly. Hence it's probably a good idea for tomoyo-tools not to add this option any more. Only disadvantage I can think of is that if running on unsupported kernels (e.g. from buster), TOMOYO is silently disabled instead of a kernel panic. If the default behavior is not changed, it would probably be a good idea to let the user choose. (NB: The system I am writing this from was booted without security=tomoyo and has both TOMOYO and AppArmor enabled.) -- Alois -- System Information: Debian Release: bullseye/sid APT prefers testing APT policy: (500, 'testing'), (100, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 5.9.0-3-amd64 (SMP w/4 CPU threads) Kernel taint flags: TAINT_OOT_MODULE Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages tomoyo-tools depends on: ii debconf [debconf-2.0] 1.5.74 ii libc6 2.31-4 ii libncurses6 6.2+20200918-1 ii libtinfo6 6.2+20200918-1 ii libtomoyotools3 2.6.0-20190305-1 tomoyo-tools recommends no packages. tomoyo-tools suggests no packages. -- debconf information: * tomoyo-tools/grub: false
