On Mon, Sep 03, 2012 at 12:57:50PM -0300, Marcelo Cerri wrote:
Hi,
I was discussing with Jiri Denemark about the current behavior of
none seclabels with multiple security drivers and I'd like to hear
more opinions about how this should work.
Currently, a none security label can be defined
On Tue, Sep 04, 2012 at 10:22:56 +0100, Daniel P. Berrange wrote:
On Mon, Sep 03, 2012 at 12:57:50PM -0300, Marcelo Cerri wrote:
Hi,
I was discussing with Jiri Denemark about the current behavior of
none seclabels with multiple security drivers and I'd like to hear
more opinions about
On Tue, Sep 04, 2012 at 11:28:19AM +0200, Jiri Denemark wrote:
On Tue, Sep 04, 2012 at 10:22:56 +0100, Daniel P. Berrange wrote:
On Mon, Sep 03, 2012 at 12:57:50PM -0300, Marcelo Cerri wrote:
Hi,
I was discussing with Jiri Denemark about the current behavior of
none seclabels with
On Tue, Sep 04, 2012 at 10:31:54 +0100, Daniel P. Berrange wrote:
On Tue, Sep 04, 2012 at 11:28:19AM +0200, Jiri Denemark wrote:
On Tue, Sep 04, 2012 at 10:22:56 +0100, Daniel P. Berrange wrote:
On Mon, Sep 03, 2012 at 12:57:50PM -0300, Marcelo Cerri wrote:
So, my question is:
On Tue, Sep 04, 2012 at 12:00:33PM +0200, Jiri Denemark wrote:
On Tue, Sep 04, 2012 at 10:31:54 +0100, Daniel P. Berrange wrote:
On Tue, Sep 04, 2012 at 11:28:19AM +0200, Jiri Denemark wrote:
On Tue, Sep 04, 2012 at 10:22:56 +0100, Daniel P. Berrange wrote:
On Mon, Sep 03, 2012 at
On Tue, Sep 04, 2012 at 11:14:35 +0100, Daniel P. Berrange wrote:
On Tue, Sep 04, 2012 at 12:00:33PM +0200, Jiri Denemark wrote:
I don't think that description of existing behaviour is accurate. With old
libvirt you have one seclabel (for SELinux/AppArmour), but secretly there
are 2 security
On Tue, Sep 04, 2012 at 01:43:43PM +0200, Jiri Denemark wrote:
On Tue, Sep 04, 2012 at 11:14:35 +0100, Daniel P. Berrange wrote:
On Tue, Sep 04, 2012 at 12:00:33PM +0200, Jiri Denemark wrote:
I don't think that description of existing behaviour is accurate. With old
libvirt you have one
On Tue, Sep 04, 2012 at 12:50:55 +0100, Daniel P. Berrange wrote:
When I think of upgrade issues, i consider the scenario where the new
libvirt is configured in the same way as the old livirt, and we need
to make sure the guest behaviour remains the same. This scenario you
describe obviously
Hi,
I was discussing with Jiri Denemark about the current behavior of none
seclabels with multiple security drivers and I'd like to hear more
opinions about how this should work.
Currently, a none security label can be defined specifically to each
enabled security driver. For example, using