[libvirt PATCH 0/1] apparmor: Allow umount(/dev)
Jim Fehlig
jfehlig at suse.com
Wed Jan 18 16:01:52 UTC 2023
On 1/18/23 02:43, Andrea Bolognani wrote:
> CC'ing AppArmor experts to get their input :)
>
> This is a farily big hammer, but unfortunately I don't think it's
> possible to tell AppArmor "let the driver use umount, but only if
> it's running inside a namespace".
>
> Andrea Bolognani (1):
> apparmor: Allow umount(/dev)
>
> src/security/apparmor/usr.sbin.libvirtd.in | 1 +
> src/security/apparmor/usr.sbin.virtqemud.in | 1 +
> 2 files changed, 2 insertions(+)
Reviewed-by: Jim Fehlig <jfehlig at suse.com>
Regards,
Jim
More information about the libvir-list
mailing list