mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-12-29 09:05:25 +00:00
ac254f342f
nvdimm memory is backed by a path on the host. This currently works only via
hotplug where the AppArmor label is created via the domain label callbacks.
This adds the virt-aa-helper support for nvdimm memory devices to generate
rules for the needed paths from the initial guest definition as well.
Example in domain xml:
<memory model='nvdimm'>
<source>
<path>/tmp/nvdimm-base</path>
</source>
<target>
<size unit='KiB'>524288</size>
<node>0</node>
</target>
</memory>
Works to start now and creates:
"/tmp/nvdimm-base" rw,
Fixes: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1757085
Acked-by: Jamie Strandboge <jamie@canonical.com>
Signed-off-by: Christian Ehrhardt <christian.ehrhardt@canonical.com>
|
||
|---|---|---|
| .. | ||
| Makefile.inc.am | ||
| security_apparmor.c | ||
| security_apparmor.h | ||
| security_dac.c | ||
| security_dac.h | ||
| security_driver.c | ||
| security_driver.h | ||
| security_manager.c | ||
| security_manager.h | ||
| security_nop.c | ||
| security_nop.h | ||
| security_selinux.c | ||
| security_selinux.h | ||
| security_stack.c | ||
| security_stack.h | ||
| virt-aa-helper.c | ||