]> git.ipfire.org Git - thirdparty/libvirt.git/commit
projects / thirdparty / libvirt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: eb89270) | patch
Only allow the UNIX transport in remote driver when setuid
authorDaniel P. Berrange <berrange@redhat.com>
Wed, 9 Oct 2013 10:44:50 +0000 (11:44 +0100)
committerDaniel P. Berrange <berrange@redhat.com>
Tue, 29 Oct 2013 16:14:22 +0000 (16:14 +0000)
commitef2ce5905521997b630aa911fcf64f4a86a248fa
tree2d0d1519b924db4f0c4422f065578d9b70f8e928tree | snapshot
parenteb892701c76c2aa495eb439821a444dc7fbfd0c1commit | diff
Only allow the UNIX transport in remote driver when setuid

We don't know enough about quality of external libraries used
for non-UNIX transports, nor do we want to spawn external
commands when setuid. Restrict to the bare minimum which is
UNIX transport for local usage. Users shouldn't need to be
running setuid if connecting to remote hypervisors in any
case.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
(cherry picked from commit e22b0232c7b94aefaef87c52c4d626fa532fcce3)
src/libvirt.c diff | blob | blame | history
src/remote/remote_driver.c diff | blob | blame | history
Mirror of https://github.com/libvirt/libvirt.git