On 05/16/2012 10:30 AM, Seth Jennings wrote: When running qemu as qemu:qemu, the kernel file must be owned by qemu for the duration of the guest running, and then libvirt reverts it back when the guest exits. My guess is that libvirt is reverting back to the wrong permissions, if your file is ending up as root:root at the end of the day instead of what you wanted. We've long desired to add ACLs instead of chown'ing a file, where ACLs are supported, as then we would just revoke the ACL instead of chown'ing back (and perhaps back to the wrong owner) when the guest goes away. There's definitely room for improvement in this area of the code; would you like to help by contributing patches? -- Eric Blake eblake(a)redhat.com +1-919-301-3266 Libvirt virtualization library http://libvirt.org