GNU bug report logs -
#49134
[PATCH] services: libvirt: Change unix-sock-group default.
Previous Next
Reported by: Brice Waegeneire <brice <at> waegenei.re>
Date: Sun, 20 Jun 2021 13:40:01 UTC
Severity: normal
Tags: patch
Done: Brice Waegeneire <brice <at> waegenei.re>
Bug is archived. No further changes may be made.
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 49134 in the body.
You can then email your comments to 49134 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
guix-patches <at> gnu.org
:
bug#49134
; Package
guix-patches
.
(Sun, 20 Jun 2021 13:40:01 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
Brice Waegeneire <brice <at> waegenei.re>
:
New bug report received and forwarded. Copy sent to
guix-patches <at> gnu.org
.
(Sun, 20 Jun 2021 13:40:01 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
When accessing libvrtd remotely, polkit can't be used unless you are
logged as root. Instead allow libvirt groups member access to the
control socket.
* gnu/services/virtualization.scm (libvirt-configuration)
[unix-sock-group]: Change default from "root" to "libvirt".
---
gnu/services/virtualization.scm | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/gnu/services/virtualization.scm b/gnu/services/virtualization.scm
index 36e9feb05c..126fa52279 100644
--- a/gnu/services/virtualization.scm
+++ b/gnu/services/virtualization.scm
@@ -168,7 +168,7 @@ stopping the Avahi daemon.")
"Default mDNS advertisement name. This must be unique on the
immediate broadcast network.")
(unix-sock-group
- (string "root")
+ (string "libvirt")
"UNIX domain socket group ownership. This can be used to
allow a 'trusted' set of users access to management capabilities
without becoming root.")
--
2.31.1
Information forwarded
to
guix-patches <at> gnu.org
:
bug#49134
; Package
guix-patches
.
(Fri, 03 Sep 2021 16:10:02 GMT)
Full text and
rfc822 format available.
Message #8 received at 49134 <at> debbugs.gnu.org (full text, mbox):
Hi,
Brice Waegeneire <brice <at> waegenei.re> skribis:
> When accessing libvrtd remotely, polkit can't be used unless you are
> logged as root. Instead allow libvirt groups member access to the
> control socket.
>
> * gnu/services/virtualization.scm (libvirt-configuration)
> [unix-sock-group]: Change default from "root" to "libvirt".
LGTM!
Ludo’.
Reply sent
to
Brice Waegeneire <brice <at> waegenei.re>
:
You have taken responsibility.
(Sat, 04 Sep 2021 07:35:02 GMT)
Full text and
rfc822 format available.
Notification sent
to
Brice Waegeneire <brice <at> waegenei.re>
:
bug acknowledged by developer.
(Sat, 04 Sep 2021 07:35:02 GMT)
Full text and
rfc822 format available.
Message #13 received at 49134-done <at> debbugs.gnu.org (full text, mbox):
Ludovic Courtès <ludo <at> gnu.org> writes:
> Brice Waegeneire <brice <at> waegenei.re> skribis:
>
>> * gnu/services/virtualization.scm (libvirt-configuration)
>> [unix-sock-group]: Change default from "root" to "libvirt".
>
> LGTM!
Thank for the reviews Ludo’, pushed as 4dc17cd54e86dbd71d26b87138660d42e8f615a9.
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org
.
(Sat, 02 Oct 2021 11:24:05 GMT)
Full text and
rfc822 format available.
This bug report was last modified 2 years and 200 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.