[PATCH v2 0/5] AppArmor support for lxc containers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

This is a repost of the previous patch series, with the following changes:
  * Dropped the patch setting "none" security driver as default in lxc.conf
  * Add a patch to implement support for "none" type with apparmor security model.

Cédric Bosdonnat (5):
  LXC driver: generate apparmor profiles for guests
  Make sure apparmor is started before libvirtd
  apparmor: add debug traces when changing profile.
  add support for apparmor in lxc-enter-namespace
  apparmor: handle "none" type

 daemon/libvirtd.service.in       |  1 +
 examples/apparmor/Makefile.am    |  2 ++
 examples/apparmor/TEMPLATE       |  2 +-
 examples/apparmor/libvirt-lxc    | 17 ++++++++++
 src/libvirt-lxc.c                | 13 ++++++++
 src/security/security_apparmor.c | 24 +++++++++++---
 src/security/virt-aa-helper.c    | 69 +++++++++++++++++++++++++++++-----------
 7 files changed, 103 insertions(+), 25 deletions(-)
 create mode 100644 examples/apparmor/libvirt-lxc

-- 
1.8.5.2

--
libvir-list mailing list
libvir-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/libvir-list
[Index of Archives]     [Virt Tools]     [Libvirt Users]     [Lib OS Info]     [Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Big List of Linux Books]     [Yosemite News]     [KDE Users]     [Fedora Tools]