[libvirt] [PATCHv1 3/4] qemu: add -sandbox to command line if requested
Daniel P. Berrange
berrange at redhat.com
Tue Sep 11 13:14:18 UTC 2012
On Tue, Sep 11, 2012 at 02:58:20PM +0200, Ján Tomko wrote:
> ---
> src/qemu/qemu_command.c | 7 +++++++
> 1 files changed, 7 insertions(+), 0 deletions(-)
>
> diff --git a/src/qemu/qemu_command.c b/src/qemu/qemu_command.c
> index a83d6de..210290e 100644
> --- a/src/qemu/qemu_command.c
> +++ b/src/qemu/qemu_command.c
> @@ -6462,6 +6462,13 @@ qemuBuildCommandLine(virConnectPtr conn,
> ? qemucmd->env_value[i] : "");
> }
>
> + if (qemuCapsGet(qemuCaps, QEMU_CAPS_SANDBOX)) {
> + if (driver->sandbox == 0)
> + virCommandAddArgList(cmd, "-sandbox", "off", NULL);
> + else if (driver->sandbox > 0)
> + virCommandAddArgList(cmd, "-sandbox", "on", NULL);
> + }
else if (driver->sandbox) {
virReportError(VIR_ERR_CONFIG_UNSUPPORTED, "%s",
_("QEMU does not supported seccomp snadboxes"));
goto error;
}
Daniel
--
|: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org -o- http://virt-manager.org :|
|: http://autobuild.org -o- http://search.cpan.org/~danberr/ :|
|: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|
More information about the libvir-list
mailing list