[Bug 691590] Re: libvirt should not take ownership of ISO images
Serge Hallyn
691590 at bugs.launchpad.net
Wed Oct 5 14:51:27 UTC 2011
See https://www.redhat.com/archives/libvir-
list/2011-October/msg00104.html and https://www.redhat.com/archives
/libvir-list/2011-October/msg00110.html for the upstream response. The
first message describes the proper fix (switching from chown to acls in
the dac security code). The second suggests using a readonly mount for
the isos.
Is it possible to use a read-only bind mount of the mirror directory for
your libvirt VMs? You can either mount it elsewhere, or else have
/etc/init/libvirt unshare a new mount namespace and remount the mirror
directory read-only in place before starting libvirtd.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to libvirt in Ubuntu.
https://bugs.launchpad.net/bugs/691590
Title:
libvirt should not take ownership of ISO images
To manage notifications about this bug go to:
https://bugs.launchpad.net/libvirt/+bug/691590/+subscriptions
More information about the Ubuntu-server-bugs
mailing list