[libvirt] [PATCH] security: apparmor: Properly link with storage driver in helper program
Peter Krempa
pkrempa at redhat.com
Wed Jul 19 08:03:55 UTC 2017
On Tue, Jul 18, 2017 at 18:35:55 +0200, Christian Ehrhardt wrote:
> On Tue, Jul 18, 2017 at 12:51 PM, Peter Krempa <pkrempa at redhat.com> wrote:
>
> > The refactor to split up storage driver into modules broke the apparmor
> > helper program, since that did not initialize the storage driver
> > properly and thus detection of the backing chain could not work.
> >
> > Register the storage driver backends explicitly. Unfortunately it's now
> > necessary to link with the full storage driver to satisfy dependencies
> > of the loadable modules.
> >
> >
> Hi I tested:
> - on master direct virt-aa-helper calls
> - on Ubuntu+patch direct virt-aa-helper calls
> - on Ubuntu+patch start of confined guest with disks that have BackingStores
> - built for all architectures Ubuntu's libvirt supports (amd64 arm64 armhf
> i386 ppc64el s390x)
>
> All worked thanks to the patch (which was created in response to [1])
> Please pick commit tags as you consider appropriate, I guess you won't need
> all three, but I happily give them all to you :-)
> Thanks a lot Peter!
No problem :) Sorry for breaking it in the first place.
>
> Acked-by: Christian Ehrhardt <christian.ehrhardt at canonical.com>
I tweaked this to the more commonly used "Reviewed-by"
> Reported-by: Christian Ehrhardt <christian.ehrhardt at canonical.com>
> Tested-by: Christian Ehrhardt <christian.ehrhardt at canonical.com>
and pushed this patch.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20170719/67a74e45/attachment-0001.sig>
More information about the libvir-list
mailing list