[libvirt PATCH] docs: add a kbase explaining security protections for QEMU passthrough

Ján Tomko jtomko at redhat.com
Mon Feb 24 01:04:03 UTC 2020


On Thu, Feb 06, 2020 at 01:05:37PM +0000, Daniel P. Berrangé wrote:
>When using command line passthrough users will often trip up over the
>security protections like SELinux, DAC, namespaces, etc which will
>deny access to files they are passing. This document explains the
>various protections and how to deal with their policy, and/or how
>to disable them.
>
>Signed-off-by: Daniel P. Berrangé <berrange at redhat.com>
>---
> docs/kbase.html.in                       |   4 +
> docs/kbase/qemu-passthrough-security.rst | 157 +++++++++++++++++++++++
> 2 files changed, 161 insertions(+)
> create mode 100644 docs/kbase/qemu-passthrough-security.rst
>

Reviewed-by: Ján Tomko <jtomko at redhat.com>

Jano
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/libvir-list/attachments/20200224/65ff1b01/attachment-0001.sig>


More information about the libvir-list mailing list