Re: [PATCH V3 0/2] Apparmor: Add profiles for hypervisor daemons

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Thu, Jun 24, 2021 at 4:49 PM Jim Fehlig <jfehlig@xxxxxxxx> wrote:
>
> V2: https://listman.redhat.com/archives/libvir-list/2021-June/msg00676.html
> V1: https://listman.redhat.com/archives/libvir-list/2021-June/msg00456.html
>
> Changes since V2:
> Patches 3 and 4 ACKed and pushed since they are bug fixes independent of
> modular vs monolithic daemons.
>
> The qemu_bridge_helper subprofile in patch 1 was adjusted for
> communication with virtqemud instead of libvirtd.
>
> After snooping through git history, I found a few capabilities explicitly
> added for xen that have been added back to the virtxend profile.
>
> Note: The profile for virtlxcd will have to wait until the following
> issue is fixed
>
> https://gitlab.com/libvirt/libvirt/-/issues/181
>
> Jim Fehlig (2):
>   Apparmor: Add profile for virtqemud
>   Apparmor: Add profile for virtxend
>
>  src/security/apparmor/libvirt-qemu          |   3 +
>  src/security/apparmor/meson.build           |   2 +
>  src/security/apparmor/usr.sbin.virtqemud.in | 134 ++++++++++++++++++++
>  src/security/apparmor/usr.sbin.virtxend.in  |  55 ++++++++
>  4 files changed, 194 insertions(+)
>  create mode 100644 src/security/apparmor/usr.sbin.virtqemud.in
>  create mode 100644 src/security/apparmor/usr.sbin.virtxend.in
>
> --
> 2.31.1
>
>

Reviewed-by: Neal Gompa <ngompa13@xxxxxxxxx>

-- 
真実はいつも一つ!/ Always, there's only one truth!





[Index of Archives]     [Virt Tools]     [Libvirt Users]     [Lib OS Info]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]     [Fedora Tools]

  Powered by Linux