[Pkg-libvirt-maintainers] Bug#786650: virt-aa-helper: incomplete apparmor profile
Guido Günther
agx at sigxcpu.org
Sun May 24 07:43:33 UTC 2015
Hi,
thanks for the patch.
On Sun, May 24, 2015 at 12:14:48AM +0000, Luke Faraone wrote:
[..snip..]
> --- usr.lib.libvirt.virt-aa-helper 2015-05-23 23:43:44.751750819 +0000
> +++ /etc/apparmor.d/usr.lib.libvirt.virt-aa-helper 2015-05-24 00:03:13.039766331 +0000
> @@ -1,7 +1,7 @@
> # Last Modified: Mon Apr 5 15:10:27 2010
> #include <tunables/global>
>
> -/usr/lib/libvirt/virt-aa-helper {
> +/usr/lib/libvirt/virt-aa-helper flags=(complain) {
Is that one needed as well or is it rather a debugging leftover?
Cheers,
-- Guido
> #include <abstractions/base>
>
> # needed for searching directories
> @@ -25,6 +25,7 @@
>
> /etc/apparmor.d/libvirt/* r,
> /etc/apparmor.d/libvirt/libvirt-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]*-[0-9a-f]* rw,
> + /etc/libnl-3/classid r,
>
> # for backingstore -- allow access to non-hidden files in @{HOME} as well
> # as storage pools
> @@ -45,4 +46,5 @@
> /**.vmdk r,
> /**.[iI][sS][oO] r,
> /**/disk{,.*} r,
> + /dev/dm* r,
> }
More information about the Pkg-libvirt-maintainers
mailing list