packages/selinux-policy
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
selinux-policy/add-qemu_exec_t-for-stratovirt.patch
Ming Yang 4827c15f29 Add qemu_exec_t for stratovirt. 
Signed-off-by: Ming Yang <yangming73@huawei.com>
(cherry picked from commit a7e58912d2461c8915181f7af88c5c889cebaaef)
2021-08-20 15:04:54 +08:00

26 lines
1.1 KiB
Diff
Raw Blame History

From 601ffc24a1d00f20833eb104913634dedb51b95d Mon Sep 17 00:00:00 2001
From: root <root@localhost.localdomain>
Date: Fri, 20 Aug 2021 10:50:31 +0800
Subject: [PATCH] add qemu_exec_t for stratovirt
Signed-off-by: root <root@localhost.localdomain>
---
policy/modules/contrib/virt.fc | 1 +
1 file changed, 1 insertion(+)
diff --git a/policy/modules/contrib/virt.fc b/policy/modules/contrib/virt.fc
index d12dac0..c12f009 100644
--- a/policy/modules/contrib/virt.fc
+++ b/policy/modules/contrib/virt.fc
@@ -100,6 +100,7 @@ HOME_DIR/\.local/share/libvirt/boot(/.*)? gen_context(system_u:object_r:svirt_
/usr/bin/qemu-system-.* -- gen_context(system_u:object_r:qemu_exec_t,s0)
/usr/bin/qemu-kvm -- gen_context(system_u:object_r:qemu_exec_t,s0)
/usr/libexec/qemu.* -- gen_context(system_u:object_r:qemu_exec_t,s0)
+/usr/bin/stratovirt -- gen_context(system_u:object_r:qemu_exec_t,s0)
/etc/qemu-ga/fsfreeze-hook.d(/.*)? gen_context(system_u:object_r:virt_qemu_ga_unconfined_exec_t,s0)
/usr/libexec/qemu-ga/fsfreeze-hook.d(/.*)? gen_context(system_u:object_r:virt_qemu_ga_unconfined_exec_t,s0)
--
2.30.0
Reference in New Issue View Git Blame Copy Permalink