[libvirt] [PATCH for v5.3.0 08/17] security_dac: Allow caller to suppress owner remembering
Cole Robinson
crobinso at redhat.com
Wed Apr 10 20:36:50 UTC 2019
On 3/28/19 11:04 AM, Michal Privoznik wrote:
> One caller in particular (virSecurityDACSetImageLabelInternal)
> will want to have the feature turned on only in some cases.
> Introduce @remember member to _virSecurityDACChownItem to track
> whether caller wants to do owner remembering or not.
> The actual remembering is then enabled if both caller wanted it
> and the feature is turned on in the config file.
>
> Technically, we could skip over paths that don't have remember
> enabled when creating a list of paths to lock. We won't touch
> their XATTRs after all. Well, I rather play it safe and keep them
> on the locking list for now.
>
> Signed-off-by: Michal Privoznik <mprivozn at redhat.com>
Reviewed-by: Cole Robinson <crobinso at redhat.com>
- Cole
More information about the libvir-list
mailing list