[Pkg-libvirt-commits] [libvirt] 01/01: apparmor: pass attach_disconnected
Guido Guenther
agx at moszumanska.debian.org
Mon Dec 19 07:27:52 UTC 2016
This is an automated email from the git hooks/post-receive script.
agx pushed a commit to branch debian/experimental
in repository libvirt.
commit 4fdee35c34d33c00a3700898e7cc1a35e5a74e81
Author: Guido Günther <agx at sigxcpu.org>
Date: Mon Dec 19 08:25:05 2016 +0100
apparmor: pass attach_disconnected
Closes: #847370
Thanks: intrigeri
---
.../apparmor-pass-attach_disconnected.patch | 32 ++++++++++++++++++++++
debian/patches/series | 1 +
2 files changed, 33 insertions(+)
diff --git a/debian/patches/apparmor-pass-attach_disconnected.patch b/debian/patches/apparmor-pass-attach_disconnected.patch
new file mode 100644
index 0000000..9ad3aaf
--- /dev/null
+++ b/debian/patches/apparmor-pass-attach_disconnected.patch
@@ -0,0 +1,32 @@
+From: =?utf-8?q?Guido_G=C3=BCnther?= <agx at sigxcpu.org>
+Date: Mon, 19 Dec 2016 08:15:15 +0100
+Subject: apparmor: pass attach_disconnected
+
+to cure
+
+ + virsh lxc-enter-namespace --noseclabel sl /bin/ls /bin/ls
+ libvirt: error : Expected at least one file descriptor
+ error: internal error: Child process (2714) unexpected exit status 125
+
+caused by
+
+ apparmor="DENIED" operation="open" info="Failed name lookup - disconnected path" error=-13 profile="/usr/sbin/libvirtd" name="" pid=1422 comm="libvirtd" requested_mask="r" denied_mask="r" fsuid=0 ouid=0
+
+Closes: #847370
+---
+ examples/apparmor/usr.sbin.libvirtd | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/examples/apparmor/usr.sbin.libvirtd b/examples/apparmor/usr.sbin.libvirtd
+index 5e2c3e4ea..c40930bb8 100644
+--- a/examples/apparmor/usr.sbin.libvirtd
++++ b/examples/apparmor/usr.sbin.libvirtd
+@@ -2,7 +2,7 @@
+ #include <tunables/global>
+ @{LIBVIRT}="libvirt"
+
+-/usr/sbin/libvirtd {
++/usr/sbin/libvirtd flags=(attach_disconnected) {
+ #include <abstractions/base>
+ #include <abstractions/dbus>
+
diff --git a/debian/patches/series b/debian/patches/series
index 9606789..3d19e77 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -16,3 +16,4 @@ virt-aa-helper-apparmor-allow-usr-share-OVMF-too.patch
Set-defaults-for-zfs-tools.patch
Pass-GPG_TTY-env-var-to-the-ssh-binary.patch
AppArmor-policy-support-merged-usr.patch
+apparmor-pass-attach_disconnected.patch
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-libvirt/libvirt.git
More information about the Pkg-libvirt-commits
mailing list