]> git.hoellein.online Git - zenbook/commitdiff
projects / zenbook / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 6a5133e)
committing changes in /etc made by "/usr/bin/python3 /usr/bin/unattended-upgrade"
authorroot <root@localhost>
Sun, 16 Aug 2020 18:22:21 +0000 (20:22 +0200)
committerroot <root@localhost>
Sun, 16 Aug 2020 18:22:21 +0000 (20:22 +0200)
Package changes:
-apache2 2.4.41-4ubuntu3 amd64
-apache2-bin 2.4.41-4ubuntu3 amd64
-apache2-data 2.4.41-4ubuntu3 all
-apache2-utils 2.4.41-4ubuntu3 amd64
+apache2 2.4.41-4ubuntu3.1 amd64
+apache2-bin 2.4.41-4ubuntu3.1 amd64
+apache2-data 2.4.41-4ubuntu3.1 all
+apache2-utils 2.4.41-4ubuntu3.1 amd64

.etckeeper patch | blob | history
apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e [new file with mode: 0644] patch | blob
apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files [new file with mode: 0644] patch | blob

diff --git a/.etckeeper b/.etckeeper
index d1f5831fa33567ad1c42363532a957dea4f4553b..bc536b5752c97df1a94a89a6d2874f41e9cadb3f 100755 (executable)
--- a/.etckeeper
+++ b/.etckeeper
@@ -656,6 +656,8 @@ maybe chmod 0644 'apparmor.d/libvirt/TEMPLATE.lxc'
 maybe chmod 0644 'apparmor.d/libvirt/TEMPLATE.qemu'
 maybe chmod 0644 'apparmor.d/libvirt/libvirt-2a11cec6-cf27-414e-bb50-1fa264f07ff1'
 maybe chmod 0644 'apparmor.d/libvirt/libvirt-2a11cec6-cf27-414e-bb50-1fa264f07ff1.files'
+maybe chmod 0644 'apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e'
+maybe chmod 0644 'apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files'
 maybe chmod 0644 'apparmor.d/lightdm-guest-session'
 maybe chmod 0755 'apparmor.d/local'
 maybe chmod 0644 'apparmor.d/local/README'
diff --git a/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e b/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e
new file mode 100644 (file)
index 0000000..4de3f56
--- /dev/null
+++ b/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e
@@ -0,0 +1,11 @@
+#
+# This profile is for the domain whose UUID matches this file.
+#
+
+#include <tunables/global>
+
+profile libvirt-865b0476-552c-48e0-8d91-a53104462e1e flags=(attach_disconnected) {
+  #include <abstractions/libvirt-qemu>
+  #include <libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files>
+
+}
diff --git a/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files b/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files
new file mode 100644 (file)
index 0000000..61bb40b
--- /dev/null
+++ b/apparmor.d/libvirt/libvirt-865b0476-552c-48e0-8d91-a53104462e1e.files
@@ -0,0 +1,17 @@
+# DO NOT EDIT THIS FILE DIRECTLY. IT IS MANAGED BY LIBVIRT.
+  "/var/log/libvirt/**/win10.log" w,
+  "/var/lib/libvirt/qemu/domain-win10/monitor.sock" rw,
+  "/var/lib/libvirt/qemu/domain-3-win10/*" rw,
+  "/run/libvirt/**/win10.pid" rwk,
+  "/run/libvirt/**/*.tunnelmigrate.dest.win10" rw,
+  "/var/lib/libvirt/images/win10.qcow2" rwk,
+  "/var/lib/libvirt/images/virtio-win-0.1.173.iso" rk,
+  "/usr/share/OVMF/OVMF_CODE.secboot.fd" rk,
+  # don't audit writes to readonly files
+  deny "/usr/share/OVMF/OVMF_CODE.secboot.fd" w,
+  "/var/lib/libvirt/qemu/nvram/win10_VARS.fd" rwk,
+  "/dev/vhost-net" rw,
+  "/var/lib/libvirt/qemu/domain-3-win10/{,**}" rwk,
+  "/var/lib/libvirt/qemu/channel/target/domain-3-win10/{,**}" rwk,
+  "/var/lib/libvirt/qemu/domain-3-win10/master-key.aes" rwk,
+  "/dev/net/tun" rwk,
etckeeper - zenbook