aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorJan (janneke) Nieuwenhuizen <janneke@gnu.org>2020-09-30 07:53:35 +0200
committerJan (janneke) Nieuwenhuizen <janneke@gnu.org>2020-09-30 12:30:28 +0200
commit04a459a069155a6b676b6b93d7dbddb426dd0679 (patch)
tree0c05cf6c12e0a54b550c5b9523b62aa2b5e14d74
parentf2b8abc2a11daddbe83e8e4b02cc7e3f33049d45 (diff)
downloadguix-04a459a069155a6b676b6b93d7dbddb426dd0679.tar.gz
guix-04a459a069155a6b676b6b93d7dbddb426dd0679.zip
services: hurd-vm: Add childhurd user to kvm group.
This is a follow-up to commit d692ebf98077d6b651d426aba92bf2a38599c4dc. * gnu/services/virtualization.scm (%hurd-vm-accounts)[supplementary-groups]: Add ’kvm’. * gnu/services/virtualization.scm (hurd-vm-shepherd-service): Use #:group "kvm"
-rw-r--r--gnu/services/virtualization.scm5
1 files changed, 4 insertions, 1 deletions
diff --git a/gnu/services/virtualization.scm b/gnu/services/virtualization.scm
index 539e4fa86a..79d88f2b8a 100644
--- a/gnu/services/virtualization.scm
+++ b/gnu/services/virtualization.scm
@@ -974,7 +974,9 @@ is added to the OS specified in CONFIG."
#~(lambda ()
(let ((pid (fork+exec-command #$vm-command
#:user "childhurd"
- #:group "childhurd"
+ ;; XXX TODO: use "childhurd" after
+ ;; updating Shepherd
+ #:group "kvm"
#:environment-variables
;; QEMU tries to write to /var/tmp
;; by default.
@@ -1005,6 +1007,7 @@ is added to the OS specified in CONFIG."
(user-account
(name "childhurd")
(group "childhurd")
+ (supplementary-groups '("kvm"))
(comment "Privilege separation user for the childhurd")
(home-directory "/var/empty")
(shell (file-append shadow "/sbin/nologin"))