[libvirt] [PATCH v3 00/18] Implement original label remembering

Ján Tomko jtomko at redhat.com
Wed Dec 19 13:54:39 UTC 2018 

On Wed, Dec 12, 2018 at 01:40:44PM +0100, Michal Privoznik wrote:
>v3 of:
>
>https://www.redhat.com/archives/libvir-list/2018-November/msg01070.html
>
>diff to v2:
>- dropped 01/18 from v2
>- Introduced a test
>- Couple of minor adjustments as suggested in review of v2
>
>Michal Prívozník (18):
>  util: Introduce xattr getter/setter/remover
>  security: Include security_util
>  security_dac: Restore label on failed chown() attempt
>  virSecurityDACTransactionRun: Implement rollback
>  virSecurityDACRestoreAllLabel: Reorder device relabeling
>  virSecurityDACRestoreAllLabel: Restore more labels
>  security_dac: Allow callers to enable/disable label remembering/recall
>  security_dac: Remember old labels
>  virSecurityDACRestoreImageLabelInt: Restore even shared/RO disks
>  security_selinux: Track if transaction is restore
>  security_selinux: Remember old labels
>  security_selinux: Restore label on failed setfilecon() attempt
>  virSecuritySELinuxTransactionRun: Implement rollback
>  virSecuritySELinuxRestoreAllLabel: Reorder device relabeling
>  virSecuritySELinuxRestoreAllLabel: Restore more labels
>  tests: Introduce qemusecuritytest
>  tools: Provide a script to recover fubar'ed XATTRs setup
>  qemu.conf: Allow users to enable/disable label remembering
>
> cfg.mk                             |   4 +-
> src/libvirt_private.syms           |   3 +
> src/qemu/libvirtd_qemu.aug         |   1 +
> src/qemu/qemu.conf                 |   4 +
> src/qemu/qemu_conf.c               |   4 +
> src/qemu/test_libvirtd_qemu.aug.in |   1 +
> src/security/Makefile.inc.am       |   2 +
> src/security/security_dac.c        | 227 ++++++++++----
> src/security/security_selinux.c    | 272 ++++++++++++----
> src/security/security_util.c       | 256 +++++++++++++++
> src/security/security_util.h       |  32 ++
> src/util/virfile.c                 | 121 ++++++++
> src/util/virfile.h                 |  20 +-
> tests/Makefile.am                  |  10 +
> tests/qemusecuritymock.c           | 480 +++++++++++++++++++++++++++++
> tests/qemusecuritytest.c           | 173 +++++++++++
> tests/qemusecuritytest.h           |  28 ++
> tools/Makefile.am                  |   1 +
> tools/libvirt_recover_xattrs.sh    |  96 ++++++
> 19 files changed, 1600 insertions(+), 135 deletions(-)
> create mode 100644 src/security/security_util.c
> create mode 100644 src/security/security_util.h
> create mode 100644 tests/qemusecuritymock.c
> create mode 100644 tests/qemusecuritytest.c
> create mode 100644 tests/qemusecuritytest.h
> create mode 100755 tools/libvirt_recover_xattrs.sh
>

Reviewed-by: Ján Tomko <jtomko at redhat.com>

Jano
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20181219/e11c5f77/attachment-0001.sig>

More information about the libvir-list mailing list