[libvirt] [PATCH] qemu: read backing chain names from qemu
Eric Blake
eblake at redhat.com
Thu Mar 12 21:02:18 UTC 2015
On 03/12/2015 08:23 AM, Daniel P. Berrange wrote:
>>
>> But if it would satisfy your paranoia, I can certainly add a
>> verification step that the string being returned by qemu resolves to the
>> same inode being tracked by libvirt, at least in the case where the
>> <disk> element resolves to a filename rather than a network disk.
>
> I think it would be desirable, because while your current usage
> may be safe with these assumptions, if someone refactors this
> 6 months later they may not realize the security implications
> of this code.
v2 posted on those grounds.
--
Eric Blake eblake redhat com +1-919-301-3266
Libvirt virtualization library http://libvirt.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 604 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20150312/1e05378a/attachment-0001.sig>
More information about the libvir-list
mailing list