app-emulation/libvirt: fix apparmor conf in 1.2.17 and 1.2.18 (bug #554628)

The libvirtd daemon also needs acces to virt-aa-helper and libvirtb_lxc
helper residing under /usr/libexec. This is now fixed.

Thanks to aporilel.

Gentoo-Bug: 554628

Package-Manager: portage-2.2.20.1

diff --git a/app-emulation/libvirt/files/libvirt-1.2.17-fix_paths_for_apparmor.patch b/app-emulation/libvirt/files/libvirt-1.2.17-fix_paths_for_apparmor.patch
index c900ada85f954109715300f8142ceafcec2ebe06..8e19c0fd77b1747c87717cab1b3eea3f0603f9d4 100644 (file)
--- a/app-emulation/libvirt/files/libvirt-1.2.17-fix_paths_for_apparmor.patch
+++ b/app-emulation/libvirt/files/libvirt-1.2.17-fix_paths_for_apparmor.patch
@@ -145,12 +145,14 @@ diff --git a/examples/apparmor/usr.sbin.libvirtd b/examples/apparmor/usr.sbin.li
 index 5d606e6..ab2f1a9 100644
 --- a/examples/apparmor/usr.sbin.libvirtd
 +++ b/examples/apparmor/usr.sbin.libvirtd
-@@ -58,8 +58,8 @@
+@@ -58,8 +58,10 @@
    audit deny /sys/kernel/security/apparmor/.* rwxl,
    /sys/kernel/security/apparmor/profiles r,
    /usr/{lib,lib64}/libvirt/* PUxr,
 -  /usr/{lib,lib64}/libvirt/libvirt_parthelper ix,
 -  /usr/{lib,lib64}/libvirt/libvirt_iohelper ix,
++  /usr/libexec/virt-aa-helper PUxr,
++  /usr/libexec/libvirt_lxc PUxr,
 +  /usr/libexec/libvirt_parthelper ix,
 +  /usr/libexec/libvirt_iohelper ix,
    /etc/libvirt/hooks/** rmix,

diff --git a/app-emulation/libvirt/libvirt-1.2.17-r4.ebuild b/app-emulation/libvirt/libvirt-1.2.17-r5.ebuild
similarity index 100%
rename from app-emulation/libvirt/libvirt-1.2.17-r4.ebuild
rename to app-emulation/libvirt/libvirt-1.2.17-r5.ebuild

diff --git a/app-emulation/libvirt/libvirt-1.2.18.ebuild b/app-emulation/libvirt/libvirt-1.2.18-r1.ebuild
similarity index 100%
rename from app-emulation/libvirt/libvirt-1.2.18.ebuild
rename to app-emulation/libvirt/libvirt-1.2.18-r1.ebuild