openkylin
/
libvirt
mirror of https://gitee.com/openkylin/libvirt.git
9
0
Fork 0
Code Issues Projects Releases Wiki Activity

apparmor: delete profile on VM shutdown 

instead of only unloading it. This makes sure old profiles don't pile up
in /etc/apparmor.d/libvirt and we get updates to modified templates on
VM restart.

Reviewed-by: Jim Fehlig <jfehlig@suse.com>
This commit is contained in:
Guido Günther 2017-09-18 21:23:25 +02:00
parent 17825e8ae7
commit eba2225bc5
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/security/security_apparmor.c
View File

@ -220,7 +220,7 @@ remove_profile(const char *profile)
{ {
int rc = -1; int rc = -1;
const char * const argv[] = { const char * const argv[] = {
VIRT_AA_HELPER, "-R", "-u", profile, NULL VIRT_AA_HELPER, "-D", "-u", profile, NULL
}; };
if (virRun(argv, NULL) == 0) if (virRun(argv, NULL) == 0)