Re: [PATCH v3 0/2] expose baselabel for each sec model/virt type

[Giuseppe Scrivano <gscrivan@xxxxxxxxxx>]

Giuseppe Scrivano <gscrivan@xxxxxxxxxx> writes:

> Now each security model can define its own base label, that describes
> the default security context used by libvirt to run an hypervisor
> process.  This information is exposed to users trough the host
> capabilities XML.
>
> *v3 major changes
> - support LXC
> - merge virSecurityDACSetUser and virSecurityDACSetGroup in
>   virSecurityDACSetUserAndGroup
> - DAC sets the baselabel in virSecurityDACSetUserAndGroup
> - Use virDomainVirtTypeToString instead of hardcoding the name

I've ran a quick smoke test on top of the current HEAD and it seems to
work, can someone please review it or tell me if it makes sense at all
to have this information under "capabilities"?

Thanks,
Giuseppe

--
libvir-list mailing list
libvir-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/libvir-list