[libvirt] [PATCH] selinux: Fix incorrect file label generation.

Viktor Mihajlovski mihajlov at linux.vnet.ibm.com
Fri Aug 17 15:02:39 UTC 2012


On 08/17/2012 04:28 PM, Eric Blake wrote:
> On 08/17/2012 08:18 AM, Osier Yang wrote:
>> On 2012年08月17日 20:53, Viktor Mihajlovski wrote:
>>> This is an ad-hoc fix for the file label generation. It uses the base
>>> context
>>> role to determine whether to use the libvirt process context role. If
>>> this
>>> is object_r we don't touch it.
>>> It might be better to add a new flag to
>>> virSecuritySELinuxGenNewContext that
>>> specifies the context type (process or file) in the future.
>
> I'd rather Daniel Berrange chimed in on the approach.
>

sure ... this is why I wrote "ad-hoc" :-)

-- 

Mit freundlichen Grüßen/Kind Regards
    Viktor Mihajlovski

IBM Deutschland Research & Development GmbH
Vorsitzender des Aufsichtsrats: Martin Jetter
Geschäftsführung: Dirk Wittkopp
Sitz der Gesellschaft: Böblingen
Registergericht: Amtsgericht Stuttgart, HRB 243294




More information about the libvir-list mailing list