Linux Symposium

sVirt : Virtual SELinux with KVM

Toshaan Bharvani

This tutorial explains how to use sVirt to run a KVM hypervisor machine with SELinux and virtual machines with SELinux enabled. First, an explanation on how SELinux, sVirt and KVM work together to make secure isolated virtual machines, minimizing the threads towards from the hypervisor itself. Next the configuration and the label assigning of the virtual machines will be explained, a general overview of the API. The following section looks specifically at Enterprise Linux and shows what is already possible. Finally some threads models will be displayed and where sVirt will intercept them.

