Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: Jason Zaman <perfinion@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] proj/hardened-refpolicy:master commit in: policy/modules/services/
Date: Sun, 05 Sep 2021 16:00:23
Message-Id: 1630852004.32dc5265e1ec91a095161cdd6da680f1b6741bfa.perfinion@gentoo
1 commit: 32dc5265e1ec91a095161cdd6da680f1b6741bfa
2 Author: Chris PeBenito <pebenito <AT> ieee <DOT> org>
3 AuthorDate: Fri Jul 16 13:41:24 2021 +0000
4 Commit: Jason Zaman <perfinion <AT> gentoo <DOT> org>
5 CommitDate: Sun Sep 5 14:26:44 2021 +0000
6 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=32dc5265
7
8 virt: Move lines.
9
10 Signed-off-by: Chris PeBenito <pebenito <AT> ieee.org>
11 Signed-off-by: Jason Zaman <perfinion <AT> gentoo.org>
12
13 policy/modules/services/virt.te | 10 +++++-----
14 1 file changed, 5 insertions(+), 5 deletions(-)
15
16 diff --git a/policy/modules/services/virt.te b/policy/modules/services/virt.te
17 index 47c6042c..8d822e2a 100644
18 --- a/policy/modules/services/virt.te
19 +++ b/policy/modules/services/virt.te
20 @@ -503,6 +503,11 @@ manage_dirs_pattern(virtd_t, virt_cache_t, virt_cache_t)
21 manage_files_pattern(virtd_t, virt_cache_t, virt_cache_t)
22 files_var_filetrans(virtd_t, virt_cache_t, { file dir })
23
24 +allow virtd_t virt_common_runtime_t:file append_file_perms;
25 +manage_dirs_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
26 +manage_files_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
27 +filetrans_pattern(virtd_t, virt_runtime_t, virt_common_runtime_t, dir, "common")
28 +
29 manage_dirs_pattern(virtd_t, virt_content_t, virt_content_t)
30 manage_files_pattern(virtd_t, virt_content_t, virt_content_t)
31 filetrans_pattern(virtd_t, virt_home_t, virt_content_t, dir, "isos")
32 @@ -584,11 +589,6 @@ manage_files_pattern(virtd_t, virt_runtime_t, virt_runtime_t)
33 manage_sock_files_pattern(virtd_t, virt_runtime_t, virt_runtime_t)
34 files_runtime_filetrans(virtd_t, virt_runtime_t, { file dir })
35
36 -allow virtd_t virt_common_runtime_t:file append_file_perms;
37 -manage_dirs_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
38 -manage_files_pattern(virtd_t, virt_common_runtime_t, virt_common_runtime_t)
39 -filetrans_pattern(virtd_t, virt_runtime_t, virt_common_runtime_t, dir, "common")
40 -
41 manage_dirs_pattern(virtd_t, virtd_lxc_runtime_t, virtd_lxc_runtime_t)
42 manage_files_pattern(virtd_t, virtd_lxc_runtime_t, virtd_lxc_runtime_t)
43 filetrans_pattern(virtd_t, virt_runtime_t, virtd_lxc_runtime_t, dir, "lxc")
Report Message
Find on MARC Find on Google Groups