]> xenbits.xensource.com Git - libvirt.git/commitdiff
projects / libvirt.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 7fb5e31)
qemu: Don't enable seclabel remembering for session mode
authorMichal Privoznik <mprivozn@redhat.com>
Thu, 10 Jan 2019 12:53:33 +0000 (13:53 +0100)
committerMichal Privoznik <mprivozn@redhat.com>
Thu, 10 Jan 2019 15:15:42 +0000 (16:15 +0100)
The session daemon is unable to set XATTRs in 'trusted'
namespace because it doesn't run as privileged process.
Therefore, when creating the default qemu config enable
rememberOwner only when running as privileged process.

Signed-off-by: Michal Privoznik <mprivozn@redhat.com>
Reviewed-by: Ján Tomko <jtomko@redhat.com>
src/qemu/qemu_conf.c patch | blob | blame | history

diff --git a/src/qemu/qemu_conf.c b/src/qemu/qemu_conf.c
index 3718ca6c22fbff55279e26bccb8f5cdbe398619d..20952e9607f2a53832ea2bf8210671c1e2391c80 100644 (file)
--- a/src/qemu/qemu_conf.c
+++ b/src/qemu/qemu_conf.c
@@ -145,7 +145,7 @@ virQEMUDriverConfigPtr virQEMUDriverConfigNew(bool privileged)
         cfg->group = (gid_t)-1;
     }
     cfg->dynamicOwnership = privileged;
-    cfg->rememberOwner = true;
+    cfg->rememberOwner = privileged;
 
     cfg->cgroupControllers = -1; /* -1 == auto-detect */
 
Unnamed repository; edit this file 'description' to name the repository.