12 Nov
2018
12 Nov
'18
7:30 a.m.
On Mon, Nov 12, 2018 at 12:50:41PM +0100, Marc Hartmayer wrote:
On Thu, Nov 01, 2018 at 09:31 AM +0100, Martin Kletzander <mkletzan@redhat.com> wrote:
[...]
How can you run a machine/QEMU VM under a different user:group other than changing the user:group in qemu.conf and restart/reload libvirtd?
As soon as a VM is running we have not to verify /dev/kvm access, no? (so there should be no problem when libvirtd tries to “reconnect” to already running VMs).
You can add this into your domain XML: <seclabel type='static' model='dac' relabel='yes'> <label>phrdina:phrdina</label> </seclabel> And it will run the qemu process under that user. Pavel