Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1

To: Guido Günther <agx@sigxcpu.org>, 796088@bugs.debian.org
Subject: Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Wed, 19 Aug 2015 16:53:32 +0100
Message-id: <[🔎] 1439999612.2082.5.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 796088@bugs.debian.org
In-reply-to: <[🔎] 20150819112258.GA29416@bogon.m.sigxcpu.org>
References: <[🔎] 20150819112258.GA29416@bogon.m.sigxcpu.org>

I have to admit that I'm also confused by the patch for #786650:

On Wed, 2015-08-19 at 13:22 +0200, Guido Günther wrote:

+Subject: Allow access to libnl-3 config files
[...]
++  /etc/libnl-3/classid r,
++

That seems to make sense...

+   # for hostdev
+   /sys/devices/ r,
+   /sys/devices/** r,
++  deny /dev/sd* r,
++  deny /dev/vd* r,
++  deny /dev/dm-* r,
++  deny /dev/mapper/ r,
++  deny /dev/mapper/* r,

... these not so much.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
  - From: Guido Günther <agx@sigxcpu.org>

References:
- Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
  - From: Guido Günther <agx@sigxcpu.org>

Prev by Date: Processed: Re: Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
Next by Date: Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
Previous by thread: Processed: Re: Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
Next by thread: Bug#796088: jessie-pu: package libvirt/1.2.9-9+deb8u1
Index(es):
- Date
- Thread