commit: e1b6b1b4b4a8069a588d2db36b0c9c0a0ea851cb Author: Jason Zaman <jason <AT> perfinion <DOT> com> AuthorDate: Thu Aug 11 05:49:02 2016 +0000 Commit: Sven Vermeulen <swift <AT> gentoo <DOT> org> CommitDate: Mon Oct 24 17:08:02 2016 +0000 URL: https://gitweb.gentoo.org/proj/hardened-refpolicy.git/commit/?id=e1b6b1b4
virt: need to relabel to set categories libvirtError: unable to set security context 'system_u:object_r:svirt_image_t:s0:c50,c346' on '/var/lib/libvirt/qemu/domain-1-zfstest': Permission denied policy/modules/contrib/virt.te | 1 + 1 file changed, 1 insertion(+) diff --git a/policy/modules/contrib/virt.te b/policy/modules/contrib/virt.te index dc4c94d..a29f333 100644 --- a/policy/modules/contrib/virt.te +++ b/policy/modules/contrib/virt.te @@ -501,6 +501,7 @@ filetrans_pattern(virtd_t, virt_home_t, virt_content_t, dir, "isos") allow virtd_t virtd_keytab_t:file read_file_perms; allow virtd_t svirt_var_run_t:file relabel_file_perms; +allow virtd_t svirt_var_run_t:dir relabel_dir_perms; manage_dirs_pattern(virtd_t, svirt_var_run_t, svirt_var_run_t) manage_files_pattern(virtd_t, svirt_var_run_t, svirt_var_run_t) manage_sock_files_pattern(virtd_t, svirt_var_run_t, svirt_var_run_t)
