1. Patchew
  2. Libvirt
  3. View series

[PATCH 0/9] Fix image labels lost after migration with shared fs

Peng Liang posted 9 patches 2 years, 8 months ago
Test syntax-check failed
Patches applied successfully (tree, apply log)
git fetch https://github.com/patchew-project/libvirt tags/patchew/20210823024120.1167139-1-liangpeng10@huawei.com
src/libvirt_private.syms        |  1 +
src/qemu/qemu_migration.c       | 12 +++++++
src/qemu/qemu_process.c         |  5 ++-
src/qemu/qemu_security.c        | 10 ++++++
src/qemu/qemu_security.h        |  5 +++
src/security/security_dac.c     | 58 +++++++++++++++++++++++++--------
src/security/security_driver.h  |  5 +++
src/security/security_manager.c | 29 +++++++++++++++++
src/security/security_manager.h |  5 +++
src/security/security_stack.c   | 20 ++++++++++++
src/security/security_util.c    | 32 ++++++++++++++++++
src/security/security_util.h    |  4 +++
12 files changed, 172 insertions(+), 14 deletions(-)
[PATCH 0/9] Fix image labels lost after migration with shared fs
Posted by Peng Liang 2 years, 8 months ago 
When migrating using shared fs, the dst host will remember the image
labels again before launching the VM and the src host will remove the
image labels after migration.  It leads to that the image labels lost
after migration.

Patch 7-9 are the real fix patches.

Peng Liang (9):
  security: add virSecurityUpdateTimestampIfexists
  security: add virSecurityManagerUpdateImageLabel
  security: implement domainUpdateSecurityImageLabel for stack
  security: implement domainUpdateSecurityImageLabel for DAC
  qemu: add qemuSecurityUpdateImageLabel
  security: rename virSecurityDACSetImageLabelInternal to
    virSecurityDACSetImageLabelSingle
  migration: don't remember image labels when migrating with shared fs
  migration: don't remove image labels after migration
  migration: update image labels in dst after migration

 src/libvirt_private.syms        |  1 +
 src/qemu/qemu_migration.c       | 12 +++++++
 src/qemu/qemu_process.c         |  5 ++-
 src/qemu/qemu_security.c        | 10 ++++++
 src/qemu/qemu_security.h        |  5 +++
 src/security/security_dac.c     | 58 +++++++++++++++++++++++++--------
 src/security/security_driver.h  |  5 +++
 src/security/security_manager.c | 29 +++++++++++++++++
 src/security/security_manager.h |  5 +++
 src/security/security_stack.c   | 20 ++++++++++++
 src/security/security_util.c    | 32 ++++++++++++++++++
 src/security/security_util.h    |  4 +++
 12 files changed, 172 insertions(+), 14 deletions(-)

-- 
2.31.1
Re: [PATCH 0/9] Fix image labels lost after migration with shared fs
Posted by Peng Liang 2 years, 7 months ago 
Kindly ping.

On 8/23/2021 10:41 AM, Peng Liang wrote:
> When migrating using shared fs, the dst host will remember the image
> labels again before launching the VM and the src host will remove the
> image labels after migration.  It leads to that the image labels lost
> after migration.
> 
> Patch 7-9 are the real fix patches.
> 
> Peng Liang (9):
>   security: add virSecurityUpdateTimestampIfexists
>   security: add virSecurityManagerUpdateImageLabel
>   security: implement domainUpdateSecurityImageLabel for stack
>   security: implement domainUpdateSecurityImageLabel for DAC
>   qemu: add qemuSecurityUpdateImageLabel
>   security: rename virSecurityDACSetImageLabelInternal to
>     virSecurityDACSetImageLabelSingle
>   migration: don't remember image labels when migrating with shared fs
>   migration: don't remove image labels after migration
>   migration: update image labels in dst after migration
> 
>  src/libvirt_private.syms        |  1 +
>  src/qemu/qemu_migration.c       | 12 +++++++
>  src/qemu/qemu_process.c         |  5 ++-
>  src/qemu/qemu_security.c        | 10 ++++++
>  src/qemu/qemu_security.h        |  5 +++
>  src/security/security_dac.c     | 58 +++++++++++++++++++++++++--------
>  src/security/security_driver.h  |  5 +++
>  src/security/security_manager.c | 29 +++++++++++++++++
>  src/security/security_manager.h |  5 +++
>  src/security/security_stack.c   | 20 ++++++++++++
>  src/security/security_util.c    | 32 ++++++++++++++++++
>  src/security/security_util.h    |  4 +++
>  12 files changed, 172 insertions(+), 14 deletions(-)
> 
Thanks,
Peng

Patchew 2.1-devel-0870f84

© 2016 - 2024 Red Hat, Inc.