Am Donnerstag, 24. Juni 2021, 14:57:20 CEST schrieben Sie:

This is a notice that we are collecting packages/upgrades for SLE15
SP4 which will be the base for Leap 15.4.

If there is a particular feature or version you would like in, please
let me know.

Thanks for the reminder ;-)

Ideally we should aim for AppArmor 3.1 (not released yet) - maybe with a
fallback to 3.0.x if 3.1 is not available in time.

Some interesting new features (compared to 2.13.x) are:
- abi rules (and with that, enforcing of dbus and unix rules)
(profiles without an abi rule will not change their behaviour)
- support for "include if exists" in the tools
- "include if exists <abstractions/$abstraction.d>" in all abstractions
to make extending abstractions easier, similar to the local/* files
for profiles
- I'm sure I missed some things - if in doubt, check
https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0
and/or the summary in the Tumbleweed apparmor.changes.

The features I mentioned are already in the 3.0.x packages in
Tumbleweed, but upstream has labeled 3.0.x a short lived release - as
soon as 3.1 gets released, we shouldn't expect too much support for
3.0.x (but in worst case, backporting patches is typically easy).

On the technical side, it's probably a good idea to get the current
Tumbleweed package into SLE/Leap 15.4 as soon as possible (which means
we'll have most of the changes in and get them tested), and then upgrade
to 3.1 as soon as it's available.

I'll leave the (JIRA?) paperwork to you ;-) - but whenever the tools
allow it, feel free to add me to CC.

Regards,

Christian Boltz