libvirt/suse-qemu-conf.patch

22 lines
752 B
Diff

Index: libvirt-0.9.8/src/qemu/qemu.conf
===================================================================
--- libvirt-0.9.8.orig/src/qemu/qemu.conf
+++ libvirt-0.9.8/src/qemu/qemu.conf
@@ -136,7 +136,16 @@
# leaving SELinux enabled for the host in general, then set this
# to 'none' instead.
#
+# SUSE Note:
+# Currently, Apparmor is the default security framework in SUSE
+# distros. If Apparmor is enabled on the host, libvirtd is
+# generously confined but users must opt-in to confine qemu
+# instances. Change this to 'apparmor' to enable Apparmor
+# confinement of qemu instances.
+#
# security_driver = "selinux"
+# security_driver = "apparmor"
+security_driver = "none"
# The user ID for QEMU processes run by the system instance.