futurile/guix-play
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

services: hurd-vm: Add childhurd user to kvm group.

Browse Source 
This is a follow-up to commit d692ebf98077d6b651d426aba92bf2a38599c4dc.

* gnu/services/virtualization.scm (%hurd-vm-accounts)[supplementary-groups]:
Add ’kvm’.
* gnu/services/virtualization.scm (hurd-vm-shepherd-service): Use #:group
"kvm"
This commit is contained in:
Jan (janneke) Nieuwenhuizen 2020-09-30 07:53:35 +02:00
parent f2b8abc2a1
commit 04a459a069
No known key found for this signature in database
GPG Key ID: F3C1A0D9C1D65273
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
gnu/services/virtualization.scm
View File

@ -974,7 +974,9 @@ is added to the OS specified in CONFIG."
#~(lambda () #~(lambda ()
(let ((pid (fork+exec-command #$vm-command (let ((pid (fork+exec-command #$vm-command
#:user "childhurd" #:user "childhurd"
#:group "childhurd" ;; XXX TODO: use "childhurd" after
;; updating Shepherd
#:group "kvm"
#:environment-variables #:environment-variables
;; QEMU tries to write to /var/tmp ;; QEMU tries to write to /var/tmp
;; by default. ;; by default.
@ -1005,6 +1007,7 @@ is added to the OS specified in CONFIG."
(user-account (user-account
(name "childhurd") (name "childhurd")
(group "childhurd") (group "childhurd")
(supplementary-groups '("kvm"))
(comment "Privilege separation user for the childhurd") (comment "Privilege separation user for the childhurd")
(home-directory "/var/empty") (home-directory "/var/empty")
(shell (file-append shadow "/sbin/nologin")) (shell (file-append shadow "/sbin/nologin"))