[selinux-policy: 2060/3172] trunk: Debian file context fix for xen from Russell Coker.

Daniel J Walsh dwalsh at fedoraproject.org
Thu Oct 7 22:02:52 UTC 2010 

commit b3eb124654fd825c5132f8f917479e916c58cfad
Author: Chris PeBenito <cpebenito at tresys.com>
Date:   Mon Nov 24 15:34:54 2008 +0000

    trunk: Debian file context fix for xen from Russell Coker.

 Changelog                    |    1 +
 policy/modules/system/xen.fc |    7 +++++++
 policy/modules/system/xen.te |    2 +-
 3 files changed, 9 insertions(+), 1 deletions(-)
---
diff --git a/Changelog b/Changelog
index c359a33..ddd96dc 100644
--- a/Changelog
+++ b/Changelog
@@ -1,3 +1,4 @@
+- Debian file context fix for xen from Russell Coker.
 - Xserver MLS fix from Eamon Walsh.
 - Add omapi port for dhcpcd.
 - Deprecate per-role templates and rolemap support.
diff --git a/policy/modules/system/xen.fc b/policy/modules/system/xen.fc
index be99029..a36927d 100644
--- a/policy/modules/system/xen.fc
+++ b/policy/modules/system/xen.fc
@@ -2,10 +2,17 @@
 
 /usr/bin/virsh		--	gen_context(system_u:object_r:xm_exec_t,s0)
 
+ifdef(`distro_debian',`
+/usr/lib/xen-[^/]*/bin/xenconsoled -- gen_context(system_u:object_r:xenconsoled_exec_t,s0)
+/usr/lib/xen-[^/]*/bin/xend --	gen_context(system_u:object_r:xend_exec_t,s0)
+/usr/lib/xen-[^/]*/bin/xenstored -- gen_context(system_u:object_r:xenstored_exec_t,s0)
+/usr/lib/xen-[^/]*/bin/xm --	gen_context(system_u:object_r:xm_exec_t,s0)
+',`
 /usr/sbin/xenconsoled	--	gen_context(system_u:object_r:xenconsoled_exec_t,s0)
 /usr/sbin/xend		--	gen_context(system_u:object_r:xend_exec_t,s0)
 /usr/sbin/xenstored	--	gen_context(system_u:object_r:xenstored_exec_t,s0)
 /usr/sbin/xm		--	gen_context(system_u:object_r:xm_exec_t,s0)
+')
 
 /var/lib/xen(/.*)?		gen_context(system_u:object_r:xend_var_lib_t,s0)
 /var/lib/xen/images(/.*)?	gen_context(system_u:object_r:xen_image_t,s0)
diff --git a/policy/modules/system/xen.te b/policy/modules/system/xen.te
index 80caa8b..6ca1c42 100644
--- a/policy/modules/system/xen.te
+++ b/policy/modules/system/xen.te
@@ -1,5 +1,5 @@
 
-policy_module(xen, 1.7.1)
+policy_module(xen, 1.7.2)
 
 ########################################
 #

More information about the scm-commits mailing list