passt/contrib/selinux
Stefano Brivio d361fe6e80 contrib/selinux: Let interface users set paths for log, PID, socket files
Even libvirt itself will configure passt to write log, PID and socket
files to different locations depending on whether the domain is
started as root (/var/log/libvirt/...) or as a regular user
(/var/log/<PID>/libvirt/...), and user_tmp_t would only cover the
latter.

Create interfaces for log and PID files, so that callers can specify
different file contexts for those, and modify the interface for the
UNIX socket file to allow different paths as well.

Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
Tested-by: Laine Stump <laine@redhat.com>
Reviewed-by: Laine Stump <laine@redhat.com>
2023-03-09 00:36:08 +01:00
..
passt.fc selinux: Switch to a more reasonable model for PID and socket files 2023-02-21 19:12:37 +01:00
passt.if contrib/selinux: Let interface users set paths for log, PID, socket files 2023-03-09 00:36:08 +01:00
passt.te contrib/selinux: Allow binding and connecting to all UDP and TCP ports 2023-03-09 00:36:08 +01:00
pasta.fc passt, pasta: Add examples of SELinux policy modules 2022-03-29 15:35:38 +02:00
pasta.if passt, pasta: Add examples of SELinux policy modules 2022-03-29 15:35:38 +02:00
pasta.te passt, pasta: Add examples of SELinux policy modules 2022-03-29 15:35:38 +02:00