[prev in list] [next in list] [prev in thread] [next in thread]
List: libvir-list
Subject: Re: [libvirt] RFC: stop clearing QEMU emulator capabilities
From: Michal Privoznik <mprivozn () redhat ! com>
Date: 2019-11-29 8:15:07
Message-ID: 0f16fbf9-94ee-a5a6-80b1-cb1a0705601c () redhat ! com
[Download RAW message or body]
On 11/28/19 2:04 PM, Daniel P. Berrangé wrote:
>
I don't recall the exact details, but I remember I had to disable
clearing capabilities temporarily (I vaguely recall it had something to
do with device assignment). What I am trying to say is that clearing
capabilities may sometimes get in our way. So I agree with not clearing
them and relying on the rest of security mechanisms we have.
Michal
--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic