[libvirt] [PATCH 05/10] apparmor: Allow pygrub to run on Debian/Ubuntu
Stefan Bader
stefan.bader at canonical.com
Tue May 23 16:22:43 UTC 2017
In Debian/Ubuntu the pygrub command is located under
/usr/lib/xen-<version>/bin/pygrub.
Bug-Ubuntu: https://bugs.launchpad.net/bugs/1326003
Signed-off-by: Christian Ehrhardt <christian.ehrhardt at canonical.com>
Signed-off-by: Stefan Bader <stefan.bader at canonical.com>
---
examples/apparmor/usr.sbin.libvirtd | 1 +
1 file changed, 1 insertion(+)
diff --git a/examples/apparmor/usr.sbin.libvirtd b/examples/apparmor/usr.sbin.libvirtd
index 353b039..f43bfd5 100644
--- a/examples/apparmor/usr.sbin.libvirtd
+++ b/examples/apparmor/usr.sbin.libvirtd
@@ -50,6 +50,7 @@
/{usr/,}lib/udev/scsi_id PUx,
/usr/{lib,lib64}/xen-common/bin/xen-toolstack PUx,
/usr/{lib,lib64}/xen/bin/* Ux,
+ /usr/lib/xen-*/bin/pygrub PUx,
# force the use of virt-aa-helper
audit deny /{usr/,}sbin/apparmor_parser rwxl,
--
2.7.4
More information about the libvir-list
mailing list