George Dunlap writes ("[PATCH 2/5] tools/dm_restrict: Ask QEMU to chroot"): > When dm_restrict is enabled, ask QEMU to chroot into an empty directory. > > * Create /var/run/qemu/root-domid (deleting the old one if it's there) > * Pass the -chroot option to QEMU > > Rather than running `rm -rf` on the directory before creating it > (since there is no library function to do this), simply rmdir the > directory, relying on the fact that the previous QEMU instance, if > properly restricted, shouldn't have been able to write anything > anyway.
Acked-by: Ian Jackson <ian.jack...@eu.citrix.com> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xenproject.org https://lists.xenproject.org/mailman/listinfo/xen-devel