]> xenbits.xensource.com Git - people/liuw/libxenctrl-split/libvirt.git/commit
projects / people / liuw / libxenctrl-split / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 26c5fa3) | patch
virt-aa-helper: Simplify restriction logic
authorGuido Günther <agx@sigxcpu.org>
Fri, 21 Aug 2015 08:49:15 +0000 (10:49 +0200)
committerGuido Günther <agx@sigxcpu.org>
Mon, 24 Aug 2015 11:00:39 +0000 (13:00 +0200)
commitd25a5e087ae10142d3d533ed193146736526b2ae
treebe232f5eff7be9ac2da1457ba52627576a6f6826tree
parent26c5fa3a9bd37624ddd1509daf7d6a84268f089ecommit | diff
virt-aa-helper: Simplify restriction logic

First check overrides, then read only files then restricted access
itself.

This allows us to mark files for read only access whose parents were
already restricted for read write.

Based on a proposal by Martin Kletzander
src/security/virt-aa-helper.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.