-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Daniel P. Berrange wrote: > On Tue, Feb 17, 2009 at 04:52:08PM -0500, Daniel J Walsh wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> Looks like qemu launched from libvirt wants to create pulseaudito files >> under /root/.pulse directory. > > Hmm, that sounds bad - it should not do this. > >> Seems strange, and we might want to consider changing the homedir for >> each qemu launched by libvirt. >> >> /var/run/libvirt/qemu/DOMAIN >> >> for example. >> >> It seems qemu has to be able to write here or it blows up. > > What version of QEMU is this with - I think that needs to be fixed in > QEMU qemu-0.9.1-12.f11 > >> Will add selinux policy for now. > > I'd prefer not - AFAIK, QEMU should not be doing this - if PulseAudio > is desired when running as root, then the admin should start it ahead > of time, not have QEMU auto-spawn it. PA should only auto-spawn itself > if running non-root in the desktop session IMHO. > > Daniel I can not get this to run without adding policy, if qemu is denied access to /root it blows up. Sadly, It needs r/w access so running two qemu with different labels, the second will blow up since it can not write to the pulseaudio files created by the first. Added bug https://bugzilla.redhat.com/show_bug.cgi?id=486112 I still think it might be a good idea to create a homedir for each qemu from libvirt, this way they can read/write contents and as new libraries get sucked into qemu, it will just work HOME=/var/run/libvirt/qemu/DOMAIN qemu-kvm ... -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkmcIj4ACgkQrlYvE4MpobORlQCdElHKK4GPNFkP/ktx/ppHheZM 4ZwAoJAKiIgRvcmkFZJ9ArirwTtI0qOR =fOX7 -----END PGP SIGNATURE----- -- Libvir-list mailing list Libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list