- Fix libvirtd apparmor profile to work with libxenlight toolstack

Updated install-apparmor-profiles.patch bnc#745890 OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=196
2012-02-08 18:38:09 +00:00 · 2012-02-08 18:38:09 +00:00 · afbe7ed7f9
commit afbe7ed7f9
parent b4b10fd188
2 changed files with 11 additions and 1 deletions
--- a/install-apparmor-profiles.patch
+++ b/install-apparmor-profiles.patch
@ -196,7 +196,7 @@ Index: libvirt-0.9.9/examples/apparmor/usr.sbin.libvirtd.in
 ===================================================================
 --- /dev/null
 +++ libvirt-0.9.9/examples/apparmor/usr.sbin.libvirtd.in
-@@ -0,0 +1,54 @@
+@@ -0,0 +1,57 @@
 +# Last Modified: Fri Aug 19 11:20:36 2011
 +#include <tunables/global>
 +@{LIBVIRT}="libvirt"
@ -221,6 +221,7 @@ Index: libvirt-0.9.9/examples/apparmor/usr.sbin.libvirtd.in
 +  capability setpcap,
 +  capability mknod,
 +  capability fsetid,
 +  capability ipc_lock,
 +
 +  network inet stream,
 +  network inet dgram,
@ -235,6 +236,8 @@ Index: libvirt-0.9.9/examples/apparmor/usr.sbin.libvirtd.in
 +  /sbin/* Ux,
 +  /usr/bin/* Ux,
 +  /usr/sbin/* Ux,
 +  /usr/lib/xen/bin/qemu-dm Ux,
 +  /usr/lib/PolicyKit/polkit-read-auth-helper Px,
 +
 +  # force the use of virt-aa-helper
 +  audit deny /sbin/apparmor_parser rwxl,
--- a/libvirt.changes
+++ b/libvirt.changes
@ -1,3 +1,10 @@
 -------------------------------------------------------------------
 Wed Feb  8 11:12:28 MST 2012 - jfehlig@suse.com
 - Fix libvirtd apparmor profile to work with libxenlight toolstack
  Updated install-apparmor-profiles.patch
  bnc#745890
 -------------------------------------------------------------------
 Wed Jan 25 14:40:32 MST 2012 - jfehlig@suse.com