Re: [libvirt] unable to set security context (NFSv4 problem?)

Wednesday, 21 April 2010

Hi Spencer,

I could reproduce the EINVAL on the command line:

	srvl022:/storage# touch /storage/x
	srvl022:/storage# chown 110:140 /storage/x
	chown: changing ownership of `/storage/x': Invalid argument

110 and 140 are not valid UIDs and GIDs on the NFS
server. They are defined in the local passwd/group files
on the libvirt server only. After defining the user and
group on the NFS server the error message is gone.

Obviously NFSv4 is a little bit picky about remote root
users trying to change the ownership of files. This seems
to break qemuSecurityDACSetOwnership() in qemu_security_dac.c,
giving me the "unable to set security context" message.

Do you think it would be possible to introduce a configure
option '--with-dac=no'?

Regards

Harri

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [libvirt] unable to set security context (NFSv4 problem?)