Re-sending as the first didn't hit the refpolicy mailing list.
Date: Mon, 9 Oct 2017 11:53:45 -0400
From: Konrad Rzeszutek Wilk <[email protected]>
To: refpolicy at oss.tresys.com
Cc: xen-devel at lists.xenproject.org
Subject: [refpolicy SELinux PATCH] Updates to SELinux refpolicies to make
xenconsoled work. (v1)
Hey!
Since Xen 4.6 the xenstored prefers to use /dev/xen/xenbus instead of /proc/xen/xenbus.
That wasn't in the original email that Anthony had sent:
"[refpolicy] [SELINUX POLICY PATCH] Update for Xen 4.7"
http://oss.tresys.com/pipermail/refpolicy/2017-August/009784.html
But nonetheless it is needed to make xenconsoled work on Fedora installs.
Additionally we also add the 'map' functionality to make the xenconsoled
/xenconsole work together.
For more details, please see:
https://bugzilla.redhat.com/show_bug.cgi?id=1484908
Please merge at your convience.
Konrad Rzeszutek Wilk (2):
kernel/xen: Update for Xen 4.6
kernel/xen: Add map permission to the dev_rw_xen
policy/modules/kernel/devices.fc | 1 +
policy/modules/kernel/devices.if | 1 +
2 files changed, 2 insertions(+)
----- End forwarded message -----