LXC: Change the owner of host devices to the root of container

These host devices are created for container, the owner should be the root user of container. Signed-off-by: N Gao feng <gaofeng@cn.fujitsu.com>

LXC: Change the owner of host devices to the root of container
These host devices are created for container, the owner should be the root user of container. Signed-off-by: N Gao feng <gaofeng@cn.fujitsu.com>
7a8212aa · Gao feng · Eric Blake · f87be04f · 7a8212aa
隐藏空白更改
内联并排

Showing with 9 addition and 0 deletion

src/lxc/lxc_controller.c src/lxc/lxc_controller.c +9 -0

未找到文件。
--- a/src/lxc/lxc_controller.c
+++ b/src/lxc/lxc_controller.c
@@ -1348,6 +1348,9 @@ virLXCControllerSetupHostdevSubsysUSB(virDomainDefPtr vmDef,
        goto cleanup;
    }

+    if (lxcContainerChown(vmDef, dstfile) < 0)
+        goto cleanup;
+
    if (virSecurityManagerSetHostdevLabel(securityDriver,
                                          vmDef, def, vroot) < 0)
        goto cleanup;
@@ -1425,6 +1428,9 @@ virLXCControllerSetupHostdevCapsStorage(virDomainDefPtr vmDef,
        goto cleanup;
    }

+    if (lxcContainerChown(vmDef, dst) < 0)
+        goto cleanup;
+
    def->source.caps.u.storage.block = dst;
    if (virSecurityManagerSetHostdevLabel(securityDriver, vmDef, def, NULL) < 0)
        goto cleanup;
@@ -1501,6 +1507,9 @@ virLXCControllerSetupHostdevCapsMisc(virDomainDefPtr vmDef,
        goto cleanup;
    }

+    if (lxcContainerChown(vmDef, dst) < 0)
+        goto cleanup;
+
    def->source.caps.u.misc.chardev = dst;
    if (virSecurityManagerSetHostdevLabel(securityDriver, vmDef, def, NULL) < 0)
        goto cleanup;