[libvirt] [PATCH 4/6] Add support for LXC specific SELinux configuration
Stefan Berger
stefanb at linux.vnet.ibm.com
Sat May 12 02:43:44 UTC 2012
On 05/11/2012 06:10 AM, Daniel P. Berrange wrote:
> From: Daniel Walsh<dwalsh at redhat.com>
>
> The SELinux policy for LXC uses a different confinguration file
s/confinguration/configuration/
> to the traditional svirt one. Thus we need to load
s/to/than/
> /etc/selinux/targeted/contexts/lxc_contexts which contains
> something like this:
>
> process = "system_u:system_r:svirt_lxc_net_t:s0"
> file = "system_u:object_r:svirt_lxc_file_t:s0"
> content = "system_u:object_r:virt_var_lib_t:s0"
>
> cleverly designed to be parsable by virConfPtr
>
> Signed-off-by: Daniel P. Berrange<berrange at redhat.com>
ACK
More information about the libvir-list
mailing list