virt-aa-helper: handle more disk images

author Cédric Bosdonnat <cbosdonnat@suse.com>

Mon, 11 Dec 2017 10:09:31 +0000 (11:09 +0100)

committer Cédric Bosdonnat <cbosdonnat@suse.com>

Wed, 20 Dec 2017 10:05:54 +0000 (11:05 +0100)
author Cédric Bosdonnat <cbosdonnat@suse.com>
Mon, 11 Dec 2017 10:09:31 +0000 (11:09 +0100)
committer Cédric Bosdonnat <cbosdonnat@suse.com>
Wed, 20 Dec 2017 10:05:54 +0000 (11:05 +0100)
diff --git a/examples/Makefile.am b/examples/Makefile.am

index ef2f79db31453e84fc2dc1525d9325fd39e62324..7069d74e74fa5120711202a68f7476ba512aa888 100644 (file)
--- a/examples/Makefile.am
+++ b/examples/Makefile.am
@@ -67,6 +67,9 @@ admin_client_info_SOURCES = admin/client_info.c
  admin_client_close_SOURCES = admin/client_close.c
  admin_logging_SOURCES = admin/logging.c
  
+INSTALL_DATA_LOCAL =
+UNINSTALL_LOCAL =
+
  if WITH_APPARMOR_PROFILES
  apparmordir = $(sysconfdir)/apparmor.d/
  apparmor_DATA = \
@@ -85,20 +88,37 @@ templates_DATA = \
         apparmor/TEMPLATE.qemu \
         apparmor/TEMPLATE.lxc \
         $(NULL)
+
+APPARMOR_LOCAL_DIR = "$(DESTDIR)$(apparmordir)/local"
+install-apparmor-local:
+       $(MKDIR_P) "$(APPARMOR_LOCAL_DIR)"
+       echo "# Site-specific additions and overrides for \
+               'usr.lib.libvirt.virt-aa-helper'" \
+               >$(APPARMOR_LOCAL_DIR)/usr.lib.libvirt.virt-aa-helper
+
+INSTALL_DATA_LOCAL += install-apparmor-local
+UNINSTALL_LOCAL += uninstall-apparmor-local
  endif WITH_APPARMOR_PROFILES
  
  if WITH_NWFILTER
  NWFILTER_DIR = "$(DESTDIR)$(sysconfdir)/libvirt/nwfilter"
  
-install-data-local:
+install-nwfilter-local:
         $(MKDIR_P) "$(NWFILTER_DIR)"
         for f in $(FILTERS); do \
                 $(INSTALL_DATA) $$f "$(NWFILTER_DIR)"; \
         done
  
-uninstall-local::
+uninstall-nwfilter-local::
         for f in $(FILTERS); do \
                 rm -f "$(NWFILTER_DIR)/`basename $$f`"; \
         done
         -test -z "$(shell ls $(NWFILTER_DIR))" || rmdir $(NWFILTER_DIR)
+
+INSTALL_DATA_LOCAL += install-nwfilter-local
+UNINSTALL_LOCAL += uninstall-nwfilter-local
  endif WITH_NWFILTER
+
+install-data-local: $(INSTALL_DATA_LOCAL)
+
+uninstall-local: $(UNINSTALL_LOCAL)
diff --git a/examples/apparmor/usr.lib.libvirt.virt-aa-helper b/examples/apparmor/usr.lib.libvirt.virt-aa-helper

index bd6181d009bb90595fe6268b61613b4051dcffda..9c822b644e6a08d87161460f1ad8d0a314f65851 100644 (file)
--- a/examples/apparmor/usr.lib.libvirt.virt-aa-helper
+++ b/examples/apparmor/usr.lib.libvirt.virt-aa-helper
@@ -50,11 +50,16 @@ profile virt-aa-helper /usr/{lib,lib64}/libvirt/virt-aa-helper {
    /var/lib/libvirt/images/ r,
    /var/lib/libvirt/images/** r,
    /{media,mnt,opt,srv}/** r,
+  # For virt-sandbox
+  /run/libvirt/**/[sv]d[a-z] r
  
    /**.img r,
+  /**.raw r,
    /**.qcow{,2} r,
    /**.qed r,
    /**.vmdk r,
    /**.[iI][sS][oO] r,
    /**/disk{,.*} r,
+
+  #include <local/usr.lib.libvirt.virt-aa-helper>
  }
author	Cédric Bosdonnat <cbosdonnat@suse.com>
	Mon, 11 Dec 2017 10:09:31 +0000 (11:09 +0100)
committer	Cédric Bosdonnat <cbosdonnat@suse.com>
	Wed, 20 Dec 2017 10:05:54 +0000 (11:05 +0100)
examples/Makefile.am		patch \| blob \| blame \| history
examples/apparmor/usr.lib.libvirt.virt-aa-helper		patch \| blob \| blame \| history