From c6ab1770d0b9b5562af8ac848f4562b42e3997dc Mon Sep 17 00:00:00 2001 From: Alexandre Pujol Date: Tue, 28 Sep 2021 21:57:52 +0100 Subject: [PATCH] Libvirtd: update abstractions. --- apparmor.d/abstractions/libvirt-lxc | 8 +++++--- apparmor.d/abstractions/libvirt-qemu | 10 ++++------ 2 files changed, 9 insertions(+), 9 deletions(-) diff --git a/apparmor.d/abstractions/libvirt-lxc b/apparmor.d/abstractions/libvirt-lxc index 0ea35ad78..5549fb8c8 100644 --- a/apparmor.d/abstractions/libvirt-lxc +++ b/apparmor.d/abstractions/libvirt-lxc @@ -1,8 +1,10 @@ - #include +# apparmor.d - Full set of apparmor profiles +# Copyright (C) Libvirt Team +# Copyright (C) 2021 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only - # Allow receiving signals from libvirtd + # allow receiving signals from libvirtd signal (receive) peer=libvirtd, - signal (receive) peer=/usr/sbin/libvirtd, umount, diff --git a/apparmor.d/abstractions/libvirt-qemu b/apparmor.d/abstractions/libvirt-qemu index 281c7e223..ff2af3636 100644 --- a/apparmor.d/abstractions/libvirt-qemu +++ b/apparmor.d/abstractions/libvirt-qemu @@ -1,6 +1,7 @@ - #include - #include - #include +# apparmor.d - Full set of apparmor profiles +# Copyright (C) Libvirt Team +# Copyright (C) 2021 Alexandre Pujol +# SPDX-License-Identifier: GPL-2.0-only # required for reading disk images capability dac_override, @@ -15,11 +16,9 @@ network inet6 stream, ptrace (readby, tracedby) peer=libvirtd, - ptrace (readby, tracedby) peer=/usr/sbin/libvirtd, ptrace (readby, tracedby) peer=virtqemud, signal (receive) peer=libvirtd, - signal (receive) peer=/usr/sbin/libvirtd, signal (receive) peer=virtqemud, /dev/kvm rw, @@ -224,7 +223,6 @@ # allow connect with openGraphicsFD to work unix (send, receive) type=stream addr=none peer=(label=libvirtd), - unix (send, receive) type=stream addr=none peer=(label=/usr/sbin/libvirtd), unix (send, receive) type=stream addr=none peer=(label=virtqemud), # for gathering information about available host resources