[libvirt] Updated James Morris patch to apply to libvirt-0.6.0 version
James Morris
jmorris at namei.org
Sun Mar 1 22:18:05 UTC 2009
On Fri, 27 Feb 2009, Daniel J Walsh wrote:
> I think we need a mechanism in libvirtd.conf to turn this off. And
> allow perhaps three modes.
>
> svirt=Disabled. No Security Driver.
> svirt=MLS (Requires context in xml, no relabel of disks)
> svirt=Standard, (If no XML label, then random generate one and reset
> file context).
I wouldn't call these MLS and Standard. The simple isolation scheme with
automatic labeling is just one way to do things. Down the track, we'll
want to be able to specify arbitrary types for guests, not just for MLS.
--
James Morris
<jmorris at namei.org>
More information about the libvir-list
mailing list