From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jim Fehlig Subject: Re: [PATCH v6] run QEMU as non-root Date: Thu, 09 Jul 2015 17:14:40 -0600 Message-ID: <559F0060.5020201@suse.com> References: <1435755052-19447-1-git-send-email-stefano.stabellini@eu.citrix.com> <1435764543.25170.389.camel@citrix.com> <55945587.70707@suse.com> <1436438045.23508.101.camel@citrix.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; Format="flowed" Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <1436438045.23508.101.camel@citrix.com> List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-devel-bounces@lists.xen.org Errors-To: xen-devel-bounces@lists.xen.org To: Ian Campbell Cc: Ian.Jackson@eu.citrix.com, Dario Faggioli , xen-devel@lists.xensource.com, wei.liu2@citrix.com, Stefano Stabellini List-Id: xen-devel@lists.xenproject.org On 07/09/2015 04:34 AM, Ian Campbell wrote: > On Wed, 2015-07-01 at 15:03 -0600, Jim Fehlig wrote: >> Perhaps. But thanks for providing a way (b_info->device_model_user) for apps to >> override the libxl policy. > You mentioned in v5 that libvirt supports setting both the user and the > group and that the qemu driver supports that. How does that work? > > AFAICT qemu's -runas option only takes a user and it takes that user's > primary group and uses that with no configurability. I think that's a > fine way to do things, but you implied greater configurability in > libvirt and I'm now curious... The libvirt qemu driver doesn't use qemu's -runas option. It calls setregid()/setreuid() in the child after fork()'ing, but before exec()'ing, qemu. Regards, Jim