[libvirt] [PATCH 0/3] apparmor: bug and typo fix and add tapFD relabeling
Guannan Ren
gren at redhat.com
Thu Oct 25 06:51:36 UTC 2012
These three patches are generated when trying to make use of
libvirt apparmor security driver in openSUSU 11.4.
Patches fix some typoes and bugs and rename AppArmorSetImageFDLabel
to AppArmorSetFDLabel as the common labeling function that could
be used by domainSetSecurityImageFDLabel and domainSetSecurityTapFDLabel.
tapfd could be seen in the last line in specific profile named
/etc/apparmor.d/libvirt/libvirt-cdbebdfa-1d6d-65c3-be0f-fd74b978a773.files
# DO NOT EDIT THIS FILE DIRECTLY. IT IS MANAGED BY LIBVIRT.
"/var/log/libvirt/**/rhel6qcow2.log" w,
"/var/lib/libvirt/**/rhel6qcow2.monitor" rw,
"/var/run/libvirt/**/rhel6qcow2.pid" rwk,
"/run/libvirt/**/rhel6qcow2.pid" rwk,
"/var/run/libvirt/**/*.tunnelmigrate.dest.rhel6qcow2" rw,
"/run/libvirt/**/*.tunnelmigrate.dest.rhel6qcow2" rw,
"/var/lib/libvirt/images/rhel6u3qcow2.img" rw,
"/dev/tap45" rw,
Guannan Ren(3)
[PATCH 1/3] apparmor: fix typoes in virt-aa-helper
[PATCH 2/3] apparmor: no need to check security model
[PATCH 3/3] apparmor: use AppArmorSetFDLabel for both imageFD and tapFD
src/security/security_apparmor.c | 22 ++++++----------------
src/security/virt-aa-helper.c | 7 +++----
2 files changed, 9 insertions(+), 20 deletions(-)
More information about the libvir-list
mailing list