Re: [libvirt] [PATCH RFC 0/7] Run qemu under its own namespace

Thursday, 17 November 2016

On Mon, Nov 14, 2016 at 04:58:19PM +0000, Daniel P. Berrange wrote:
...
 On Mon, Nov 14, 2016 at 05:43:24PM +0100, Michal Privoznik wrote:
 > This is just an proof of concept of what has been agreed on here:
 > 
 > https://www.redhat.com/archives/libvir-list/2016-November/msg00285.html
 > 
 > There is still a lot of to be done:
 > - set up seclabels
 > - implement hot(un-)plug
 > - implement other devices, not just disks
 > 
 > I'm sending these in a hope that somebody will at least take a quick look.
I'm
 > not looking for a code cleanliness (but if you find some issues feel free to
 > raise them), more than design confirmation. If I'm going in wrong direction
I'd
 > rather stop now before digging any deeper.

 I think you're doing broadly the right thing - the only significant problem
 is the /dev/pts issue I mention. 
Oh and we'll need to make sure we skip all this when running qemu:///session
since you can't spawn new namespaces as non-root. Not a big deal, since we
don't have the udev race problem as non-root either :-)

Regards,
Daniel
-- 
|: http://berrange.com      -o-    http://www.flickr.com/photos/dberrange/ :|
|: http://libvirt.org              -o-             http://virt-manager.org :|
|: http://entangle-photo.org       -o-    http://search.cpan.org/~danberr/ :|

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [libvirt] [PATCH RFC 0/7] Run qemu under its own namespace