virtual_image_context(5) SELinux configuration virtual_image_context(5)
NAME
virtual_image_context - The SELinux virtual machine image context con-
figuration file
DESCRIPTION
The virtual_image_context file contains a list of image contexts for
use by the SELinux-aware virtulization API libvirt (see libvirtd(8)).
selinux_virtual_image_context_path(3) will return the active policy
path to this file. The default virtual image context file is:
/etc/selinux/{SELINUXTYPE}/contexts/virtual_image_context
Where {SELINUXTYPE} is the entry from the selinux configuration file
config (see selinux_config(5)).
FILE FORMAT
Each line in the file consists of an entry as follows:
user:role:type[:range]
Where:
user role type range
A user, role, type and optional range (for MCS/MLS) sepa-
rated by colons (:) that can be used as a virtual image
context.
EXAMPLE
# ./contexts/virtual_image_context
system_u:object_r:svirt_image_t:s0
system_u:object_r:svirt_content_t:s0
SEE ALSO
selinux(8), libvirtd(8), selinux_virtual_image_context_path(3),
selinux_config(5)
Security Enhanced Linux 28-Nov-2011 virtual_image_context(5)