Make sure various virt user home content gets created with a type
transition and proper file contexts for common users
Signed-off-by: Dominick Grift <[email protected]>
diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if
index 6d4424b..3c5dba7 100644
--- a/policy/modules/system/userdomain.if
+++ b/policy/modules/system/userdomain.if
@@ -712,6 +712,14 @@
optional_policy(`
usernetctl_run($1_t, $1_r)
')
+
+ optional_policy(`
+ virt_home_filetrans_virt_home($1_t, dir, ".libvirt")
+ virt_home_filetrans_virt_home($1_t, dir, ".virtinst")
+ virt_home_filetrans_virt_content($1_t, dir, "isos")
+ virt_home_filetrans_svirt_home($1_t, dir, "qemu")
+ virt_home_filetrans_virt_home($1_t, dir, "VirtualMachines")
+ ')
')
#######################################
On 12/17/12 15:07, Dominick Grift wrote:
>
> Make sure various virt user home content gets created with a type
> transition and proper file contexts for common users
>
> Signed-off-by: Dominick Grift <[email protected]>
> diff --git a/policy/modules/system/userdomain.if b/policy/modules/system/userdomain.if
> index 6d4424b..3c5dba7 100644
> --- a/policy/modules/system/userdomain.if
> +++ b/policy/modules/system/userdomain.if
> @@ -712,6 +712,14 @@
> optional_policy(`
> usernetctl_run($1_t, $1_r)
> ')
> +
> + optional_policy(`
> + virt_home_filetrans_virt_home($1_t, dir, ".libvirt")
> + virt_home_filetrans_virt_home($1_t, dir, ".virtinst")
> + virt_home_filetrans_virt_content($1_t, dir, "isos")
> + virt_home_filetrans_svirt_home($1_t, dir, "qemu")
> + virt_home_filetrans_virt_home($1_t, dir, "VirtualMachines")
> + ')
Merged.
--
Chris PeBenito
Tresys Technology, LLC
http://www.tresys.com | oss.tresys.com