Re: [PATCH v3 00/18] Implement original label remembering

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, Dec 12, 2018 at 01:40:44PM +0100, Michal Privoznik wrote:

v3 of:

https://www.redhat.com/archives/libvir-list/2018-November/msg01070.html

diff to v2:
- dropped 01/18 from v2
- Introduced a test
- Couple of minor adjustments as suggested in review of v2

Michal Prívozník (18):
 util: Introduce xattr getter/setter/remover
 security: Include security_util
 security_dac: Restore label on failed chown() attempt
 virSecurityDACTransactionRun: Implement rollback
 virSecurityDACRestoreAllLabel: Reorder device relabeling
 virSecurityDACRestoreAllLabel: Restore more labels
 security_dac: Allow callers to enable/disable label remembering/recall
 security_dac: Remember old labels
 virSecurityDACRestoreImageLabelInt: Restore even shared/RO disks
 security_selinux: Track if transaction is restore
 security_selinux: Remember old labels
 security_selinux: Restore label on failed setfilecon() attempt
 virSecuritySELinuxTransactionRun: Implement rollback
 virSecuritySELinuxRestoreAllLabel: Reorder device relabeling
 virSecuritySELinuxRestoreAllLabel: Restore more labels
 tests: Introduce qemusecuritytest
 tools: Provide a script to recover fubar'ed XATTRs setup
 qemu.conf: Allow users to enable/disable label remembering

cfg.mk                             |   4 +-
src/libvirt_private.syms           |   3 +
src/qemu/libvirtd_qemu.aug         |   1 +
src/qemu/qemu.conf                 |   4 +
src/qemu/qemu_conf.c               |   4 +
src/qemu/test_libvirtd_qemu.aug.in |   1 +
src/security/Makefile.inc.am       |   2 +
src/security/security_dac.c        | 227 ++++++++++----
src/security/security_selinux.c    | 272 ++++++++++++----
src/security/security_util.c       | 256 +++++++++++++++
src/security/security_util.h       |  32 ++
src/util/virfile.c                 | 121 ++++++++
src/util/virfile.h                 |  20 +-
tests/Makefile.am                  |  10 +
tests/qemusecuritymock.c           | 480 +++++++++++++++++++++++++++++
tests/qemusecuritytest.c           | 173 +++++++++++
tests/qemusecuritytest.h           |  28 ++
tools/Makefile.am                  |   1 +
tools/libvirt_recover_xattrs.sh    |  96 ++++++
19 files changed, 1600 insertions(+), 135 deletions(-)
create mode 100644 src/security/security_util.c
create mode 100644 src/security/security_util.h
create mode 100644 tests/qemusecuritymock.c
create mode 100644 tests/qemusecuritytest.c
create mode 100644 tests/qemusecuritytest.h
create mode 100755 tools/libvirt_recover_xattrs.sh



Reviewed-by: Ján Tomko <jtomko@xxxxxxxxxx>

Jano

Attachment: signature.asc
Description: PGP signature

--
libvir-list mailing list
libvir-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/libvir-list
[Index of Archives]     [Virt Tools]     [Libvirt Users]     [Lib OS Info]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]     [Fedora Tools]

  Powered by Linux