[libvirt] [PATCHv2 0/2] lxc/dac: avoid getgrouplist between fork/exec
Michal Privoznik
mprivozn at redhat.com
Thu Jul 18 12:46:30 UTC 2013
On 18.07.2013 01:08, Eric Blake wrote:
> v1 was here:
> https://www.redhat.com/archives/libvir-list/2013-July/msg00853.html
>
> Changes since then: split into two patches, and delay supplemental
> group computation until just before forking
>
> Eric Blake (2):
> security: framework for driver PreFork handler
> security_dac: compute supplemental groups before fork
>
> src/qemu/qemu_process.c | 3 +-
> src/security/security_dac.c | 63 ++++++++++++++++++++++++++++-------------
> src/security/security_driver.h | 4 +++
> src/security/security_manager.c | 16 +++++++++--
> src/security/security_manager.h | 2 +-
> src/security/security_stack.c | 23 +++++++++++++++
> 6 files changed, 88 insertions(+), 23 deletions(-)
>
ACK series, but see the issue I'm raising in 2/2.
Michal
More information about the libvir-list
mailing list