- Allow execution of libvirt hook scripts in /etc/libvirt/hooks/

in libvirtd AppArmor profile OBS-URL: https://build.opensuse.org/package/show/Virtualization/libvirt?expand=0&rev=330
2013-11-26 21:52:18 +00:00 · 2013-11-26 21:52:18 +00:00 · c521110742
commit c521110742
parent a58c0b5ccc
2 changed files with 8 additions and 1 deletions
--- a/install-apparmor-profiles.patch
+++ b/install-apparmor-profiles.patch
@ -203,7 +203,7 @@ Index: libvirt-1.1.4/examples/apparmor/usr.sbin.libvirtd.in
 ===================================================================
 --- /dev/null
 +++ libvirt-1.1.4/examples/apparmor/usr.sbin.libvirtd.in
-@@ -0,0 +1,60 @@
+@@ -0,0 +1,61 @@
 +# Last Modified: Fri Aug 19 11:20:36 2011
 +#include <tunables/global>
 +@{LIBVIRT}="libvirt"
@ -255,6 +255,7 @@ Index: libvirt-1.1.4/examples/apparmor/usr.sbin.libvirtd.in
 +  audit deny /sys/kernel/security/apparmor/matching rwxl,
 +  audit deny /sys/kernel/security/apparmor/.* rwxl,
 +  /sys/kernel/security/apparmor/profiles r,
 +  /etc/libvirt/hooks/* rix,
 +  /etc/xen/scripts/* rix,
 +  @libdir@/libvirt/* Pxr,
 +  @libdir@/libvirt/libvirt_parthelper Ux,
--- a/libvirt.changes
+++ b/libvirt.changes
@ -1,3 +1,9 @@
 -------------------------------------------------------------------
 Tue Nov 26 14:51:44 MST 2013 - jfehlig@suse.com
 - Allow execution of libvirt hook scripts in /etc/libvirt/hooks/
  in libvirtd AppArmor profile
 -------------------------------------------------------------------
 Wed Nov 20 10:57:57 MST 2013 - jfehlig@suse.com