[libvirt] [PATCH v2 0/5] AppArmor support for lxc containers
Cédric Bosdonnat
cbosdonnat at suse.com
Mon Mar 3 10:26:41 UTC 2014
This is a repost of the previous patch series, with the following changes:
* Dropped the patch setting "none" security driver as default in lxc.conf
* Add a patch to implement support for "none" type with apparmor security model.
Cédric Bosdonnat (5):
LXC driver: generate apparmor profiles for guests
Make sure apparmor is started before libvirtd
apparmor: add debug traces when changing profile.
add support for apparmor in lxc-enter-namespace
apparmor: handle "none" type
daemon/libvirtd.service.in | 1 +
examples/apparmor/Makefile.am | 2 ++
examples/apparmor/TEMPLATE | 2 +-
examples/apparmor/libvirt-lxc | 17 ++++++++++
src/libvirt-lxc.c | 13 ++++++++
src/security/security_apparmor.c | 24 +++++++++++---
src/security/virt-aa-helper.c | 69 +++++++++++++++++++++++++++++-----------
7 files changed, 103 insertions(+), 25 deletions(-)
create mode 100644 examples/apparmor/libvirt-lxc
--
1.8.5.2
More information about the libvir-list
mailing list