[libvirt] [PATCHv2 0/2] lxc/dac: avoid getgrouplist between fork/exec
Eric Blake
eblake at redhat.com
Wed Jul 17 23:08:05 UTC 2013
v1 was here:
https://www.redhat.com/archives/libvir-list/2013-July/msg00853.html
Changes since then: split into two patches, and delay supplemental
group computation until just before forking
Eric Blake (2):
security: framework for driver PreFork handler
security_dac: compute supplemental groups before fork
src/qemu/qemu_process.c | 3 +-
src/security/security_dac.c | 63 ++++++++++++++++++++++++++++-------------
src/security/security_driver.h | 4 +++
src/security/security_manager.c | 16 +++++++++--
src/security/security_manager.h | 2 +-
src/security/security_stack.c | 23 +++++++++++++++
6 files changed, 88 insertions(+), 23 deletions(-)
--
1.8.3.1
More information about the libvir-list
mailing list