From b3eb124654fd825c5132f8f917479e916c58cfad Mon Sep 17 00:00:00 2001 From: Chris PeBenito Date: Mon, 24 Nov 2008 15:34:54 +0000 Subject: [PATCH] trunk: Debian file context fix for xen from Russell Coker. --- Changelog | 1 + policy/modules/system/xen.fc | 7 +++++++ policy/modules/system/xen.te | 2 +- 3 files changed, 9 insertions(+), 1 deletion(-) diff --git a/Changelog b/Changelog index c359a339..ddd96dc9 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,4 @@ +- Debian file context fix for xen from Russell Coker. - Xserver MLS fix from Eamon Walsh. - Add omapi port for dhcpcd. - Deprecate per-role templates and rolemap support. diff --git a/policy/modules/system/xen.fc b/policy/modules/system/xen.fc index be99029a..a36927d0 100644 --- a/policy/modules/system/xen.fc +++ b/policy/modules/system/xen.fc @@ -2,10 +2,17 @@ /usr/bin/virsh -- gen_context(system_u:object_r:xm_exec_t,s0) +ifdef(`distro_debian',` +/usr/lib/xen-[^/]*/bin/xenconsoled -- gen_context(system_u:object_r:xenconsoled_exec_t,s0) +/usr/lib/xen-[^/]*/bin/xend -- gen_context(system_u:object_r:xend_exec_t,s0) +/usr/lib/xen-[^/]*/bin/xenstored -- gen_context(system_u:object_r:xenstored_exec_t,s0) +/usr/lib/xen-[^/]*/bin/xm -- gen_context(system_u:object_r:xm_exec_t,s0) +',` /usr/sbin/xenconsoled -- gen_context(system_u:object_r:xenconsoled_exec_t,s0) /usr/sbin/xend -- gen_context(system_u:object_r:xend_exec_t,s0) /usr/sbin/xenstored -- gen_context(system_u:object_r:xenstored_exec_t,s0) /usr/sbin/xm -- gen_context(system_u:object_r:xm_exec_t,s0) +') /var/lib/xen(/.*)? gen_context(system_u:object_r:xend_var_lib_t,s0) /var/lib/xen/images(/.*)? gen_context(system_u:object_r:xen_image_t,s0) diff --git a/policy/modules/system/xen.te b/policy/modules/system/xen.te index 80caa8b7..6ca1c421 100644 --- a/policy/modules/system/xen.te +++ b/policy/modules/system/xen.te @@ -1,5 +1,5 @@ -policy_module(xen, 1.7.1) +policy_module(xen, 1.7.2) ######################################## #