From nobody Mon Feb 9 16:51:37 2026 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) client-ip=170.10.133.124; envelope-from=libvir-list-bounces@redhat.com; helo=us-smtp-delivery-124.mimecast.com; Authentication-Results: mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass(p=none dis=none) header.from=redhat.com ARC-Seal: i=1; a=rsa-sha256; t=1643737956; cv=none; d=zohomail.com; s=zohoarc; b=h98IAOnEvTAL0dc4U7PQl9By/tcWpYIOO/bRmDvSYQWSKNA0K44OjhZbUPDCm6C1vrFuVmygLCV1JLnk07fsZG/gSGA7O43lnMHr2ZBzBB1Uv2yaKjr99N4y7KcdQqrzsOrd7UwsyL2RW6NyUiVJVYlZm9TvpD6Z0MjhEkHn4Ds= ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1643737956; h=Content-Type:Content-Transfer-Encoding:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To; bh=Zz313MZ1ATiQfQ2k6OzePDTH/3uXBzvAsRxjXopwftE=; b=Z6WM5ipbgzKV/JW1RUL1A6s1k503nmQXpxxCp6XibTZLI75ISozJB/22WXHEbN1R5HxxEEZZ9BR6bfazaAddA/9Lz/4/uxbUN5EaQCMyVIO1thwVmTw1LR/ciRVNruR/gws21bBw6+bthF5yzn1swWbRsLgBUNqmduoa7cR8QZw= ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass; spf=pass (zohomail.com: domain of redhat.com designates 170.10.133.124 as permitted sender) smtp.mailfrom=libvir-list-bounces@redhat.com; dmarc=pass header.from= (p=none dis=none) Return-Path: Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by mx.zohomail.com with SMTPS id 1643737956397886.3880895569031; Tue, 1 Feb 2022 09:52:36 -0800 (PST) Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com [209.132.183.4]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-250-UE87--YtNz-0B8fy15XEYQ-1; Tue, 01 Feb 2022 12:52:34 -0500 Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mimecast-mx01.redhat.com (Postfix) with ESMTPS id AB42A8143EF; Tue, 1 Feb 2022 17:52:27 +0000 (UTC) Received: from colo-mx.corp.redhat.com (colo-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.20]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 87ED2753F5; Tue, 1 Feb 2022 17:52:27 +0000 (UTC) Received: from lists01.pubmisc.prod.ext.phx2.redhat.com (lists01.pubmisc.prod.ext.phx2.redhat.com [10.5.19.33]) by colo-mx.corp.redhat.com (Postfix) with ESMTP id 4F19C1809CB9; Tue, 1 Feb 2022 17:52:27 +0000 (UTC) Received: from smtp.corp.redhat.com (int-mx04.intmail.prod.int.phx2.redhat.com [10.5.11.14]) by lists01.pubmisc.prod.ext.phx2.redhat.com (8.13.8/8.13.8) with ESMTP id 211HoYma032766 for ; Tue, 1 Feb 2022 12:50:35 -0500 Received: by smtp.corp.redhat.com (Postfix) id F198D752C4; Tue, 1 Feb 2022 17:50:34 +0000 (UTC) Received: from harajuku.usersys.redhat.com.homenet.telecomitalia.it (unknown [10.40.195.114]) by smtp.corp.redhat.com (Postfix) with ESMTPS id 61E62798BF for ; Tue, 1 Feb 2022 17:50:34 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1643737955; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=Zz313MZ1ATiQfQ2k6OzePDTH/3uXBzvAsRxjXopwftE=; b=WNK7EvYxE6V5MVb+yiMcWVFhhCI1YbOxbsXfDw9E9Pghn56tdsCyb8/RUzuC+dYfsXaVSZ CG5e23grCG2oxJAkpKCkbeOKZvvUcgZsiQ+BaYLQV/Rpb7bmfUAYAcni8BD7K84vET2tFQ yzHoExSBZdJXJKZIOttpyERac4Fg31k= X-MC-Unique: UE87--YtNz-0B8fy15XEYQ-1 From: Andrea Bolognani To: libvir-list@redhat.com Subject: [libvirt PATCH 3/3] rpm: List more directories Date: Tue, 1 Feb 2022 18:50:29 +0100 Message-Id: <20220201175029.49169-4-abologna@redhat.com> In-Reply-To: <20220201175029.49169-1-abologna@redhat.com> References: <20220201175029.49169-1-abologna@redhat.com> MIME-Version: 1.0 X-Scanned-By: MIMEDefang 2.79 on 10.5.11.14 X-loop: libvir-list@redhat.com X-BeenThere: libvir-list@redhat.com X-Mailman-Version: 2.1.12 Precedence: junk List-Id: Development discussions about the libvirt library & tools List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: libvir-list-bounces@redhat.com Errors-To: libvir-list-bounces@redhat.com X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11 Authentication-Results: relay.mimecast.com; auth=pass smtp.auth=CUSA124A263 smtp.mailfrom=libvir-list-bounces@redhat.com X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Transfer-Encoding: quoted-printable X-ZohoMail-DKIM: pass (identity @redhat.com) X-ZM-MESSAGEID: 1643737958773100001 Content-Type: text/plain; charset="utf-8" This has two advantages: it makes it possible for the admin to ask rpm what package they belong to, and results in them ending up with stricter permissions than they would have if we let libvirt create them at runtime. Signed-off-by: Andrea Bolognani --- libvirt.spec.in | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) diff --git a/libvirt.spec.in b/libvirt.spec.in index ce82def2af..4a56ace1d6 100644 --- a/libvirt.spec.in +++ b/libvirt.spec.in @@ -1682,6 +1682,7 @@ exit 0 %dir %{_datadir}/libvirt/ =20 %ghost %dir %{_rundir}/libvirt/ +%ghost %dir %{_rundir}/libvirt/common/ =20 %dir %attr(0755, root, root) %{_localstatedir}/lib/libvirt/ %dir %attr(0711, root, root) %{_localstatedir}/lib/libvirt/images/ @@ -1758,6 +1759,7 @@ exit 0 %{_unitdir}/virtinterfaced-ro.socket %{_unitdir}/virtinterfaced-admin.socket %attr(0755, root, root) %{_sbindir}/virtinterfaced +%ghost %dir %{_rundir}/libvirt/interface/ %{_libdir}/%{name}/connection-driver/libvirt_driver_interface.so %{_mandir}/man8/virtinterfaced.8* =20 @@ -1793,6 +1795,7 @@ exit 0 %{_unitdir}/virtnodedevd-ro.socket %{_unitdir}/virtnodedevd-admin.socket %attr(0755, root, root) %{_sbindir}/virtnodedevd +%ghost %dir %{_rundir}/libvirt/nodedev/ %{_libdir}/%{name}/connection-driver/libvirt_driver_nodedev.so %{_mandir}/man8/virtnodedevd.8* =20 @@ -1807,6 +1810,8 @@ exit 0 %attr(0755, root, root) %{_sbindir}/virtnwfilterd %dir %attr(0700, root, root) %{_sysconfdir}/libvirt/nwfilter/ %ghost %dir %{_rundir}/libvirt/network/ +%ghost %dir %{_rundir}/libvirt/nwfilter-binding/ +%ghost %dir %{_rundir}/libvirt/nwfilter/ %{_libdir}/%{name}/connection-driver/libvirt_driver_nwfilter.so %{_mandir}/man8/virtnwfilterd.8* =20 @@ -1819,6 +1824,8 @@ exit 0 %{_unitdir}/virtsecretd-ro.socket %{_unitdir}/virtsecretd-admin.socket %attr(0755, root, root) %{_sbindir}/virtsecretd +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/secrets/ +%ghost %dir %{_rundir}/libvirt/secrets/ %{_libdir}/%{name}/connection-driver/libvirt_driver_secret.so %{_mandir}/man8/virtsecretd.8* =20 @@ -1834,6 +1841,9 @@ exit 0 %{_unitdir}/virtstoraged-admin.socket %attr(0755, root, root) %{_sbindir}/virtstoraged %attr(0755, root, root) %{_libexecdir}/libvirt_parthelper +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/storage/ +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/storage/autostart/ +%ghost %dir %{_rundir}/libvirt/storage/ %{_libdir}/%{name}/connection-driver/libvirt_driver_storage.so %{_libdir}/%{name}/storage-backend/libvirt_storage_backend_fs.so %{_libdir}/%{name}/storage-file/libvirt_storage_file_fs.so @@ -1892,12 +1902,23 @@ exit 0 %{_unitdir}/virtqemud-admin.socket %attr(0755, root, root) %{_sbindir}/virtqemud %dir %attr(0700, root, root) %{_sysconfdir}/libvirt/qemu/ +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/qemu/autostart/ %dir %attr(0700, root, root) %{_localstatedir}/log/libvirt/qemu/ %config(noreplace) %{_sysconfdir}/libvirt/qemu.conf %config(noreplace) %{_sysconfdir}/libvirt/qemu-lockd.conf %config(noreplace) %{_sysconfdir}/logrotate.d/libvirtd.qemu %ghost %dir %{_rundir}/libvirt/qemu/ +%ghost %dir %{_rundir}/libvirt/qemu/dbus/ +%ghost %dir %{_rundir}/libvirt/qemu/slirp/ %dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/channel/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/channel/target/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/checkpoint/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/dump/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/nvram/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/ram/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/save/ +%dir %attr(0751, %{qemu_user}, %{qemu_group}) %{_localstatedir}/lib/libvir= t/qemu/snapshot/ %dir %attr(0750, root, root) %{_localstatedir}/cache/libvirt/qemu/ %{_datadir}/augeas/lenses/libvirtd_qemu.aug %{_datadir}/augeas/lenses/tests/test_libvirtd_qemu.aug @@ -1920,6 +1941,8 @@ exit 0 %{_unitdir}/virtlxcd-admin.socket %attr(0755, root, root) %{_sbindir}/virtlxcd %dir %attr(0700, root, root) %{_localstatedir}/log/libvirt/lxc/ +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/lxc/ +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/lxc/autostart/ %config(noreplace) %{_sysconfdir}/libvirt/lxc.conf %config(noreplace) %{_sysconfdir}/logrotate.d/libvirtd.lxc %ghost %dir %{_rundir}/libvirt/lxc/ @@ -1944,11 +1967,17 @@ exit 0 %config(noreplace) %{_sysconfdir}/libvirt/libxl.conf %config(noreplace) %{_sysconfdir}/logrotate.d/libvirtd.libxl %config(noreplace) %{_sysconfdir}/libvirt/libxl-lockd.conf +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/libxl/ +%dir %attr(0700, root, root) %{_sysconfdir}/libvirt/libxl/autostart/ %{_datadir}/augeas/lenses/libvirtd_libxl.aug %{_datadir}/augeas/lenses/tests/test_libvirtd_libxl.aug %dir %attr(0700, root, root) %{_localstatedir}/log/libvirt/libxl/ %ghost %dir %{_rundir}/libvirt/libxl/ %dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/libxl/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/libxl/channel/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/libxl/channel/t= arget/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/libxl/dump/ +%dir %attr(0700, root, root) %{_localstatedir}/lib/libvirt/libxl/save/ %{_libdir}/%{name}/connection-driver/libvirt_driver_libxl.so %{_mandir}/man8/virtxend.8* %endif --=20 2.34.1