]> git.ipfire.org Git - thirdparty/libvirt.git/commit
projects / thirdparty / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 68acc70) | patch
security: Do not restore labels on device tree binary
authorJiri Denemark <jdenemar@redhat.com>
Fri, 15 Jan 2016 15:34:37 +0000 (16:34 +0100)
committerJiri Denemark <jdenemar@redhat.com>
Fri, 15 Jan 2016 15:34:37 +0000 (16:34 +0100)
commit8f0a15727fe04b9051010f793df3fb55e5e71f22
treee5efa3cd1fb8868e4517d6b119840bb66ada7ebctree
parent68acc701bd449481e3206723c25b18fcd3d261b7commit | diff
security: Do not restore labels on device tree binary

A device tree binary file specified by /domain/os/dtb element is a
read-only resource similar to kernel and initrd files. We shouldn't
restore its label when destroying a domain to avoid breaking other
domains configure with the same device tree.

Signed-off-by: Jiri Denemark <jdenemar@redhat.com>
src/security/security_dac.c diff | blob | blame | history
src/security/security_selinux.c diff | blob | blame | history
Mirror of https://github.com/libvirt/libvirt.git