From 04a459a069155a6b676b6b93d7dbddb426dd0679 Mon Sep 17 00:00:00 2001 From: "Jan (janneke) Nieuwenhuizen" Date: Wed, 30 Sep 2020 07:53:35 +0200 Subject: services: hurd-vm: Add childhurd user to kvm group. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This is a follow-up to commit d692ebf98077d6b651d426aba92bf2a38599c4dc. * gnu/services/virtualization.scm (%hurd-vm-accounts)[supplementary-groups]: Add ’kvm’. * gnu/services/virtualization.scm (hurd-vm-shepherd-service): Use #:group "kvm" --- gnu/services/virtualization.scm | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/gnu/services/virtualization.scm b/gnu/services/virtualization.scm index 539e4fa86a..79d88f2b8a 100644 --- a/gnu/services/virtualization.scm +++ b/gnu/services/virtualization.scm @@ -974,7 +974,9 @@ (define vm-command #~(lambda () (let ((pid (fork+exec-command #$vm-command #:user "childhurd" - #:group "childhurd" + ;; XXX TODO: use "childhurd" after + ;; updating Shepherd + #:group "kvm" #:environment-variables ;; QEMU tries to write to /var/tmp ;; by default. @@ -1005,6 +1007,7 @@ (define %hurd-vm-accounts (user-account (name "childhurd") (group "childhurd") + (supplementary-groups '("kvm")) (comment "Privilege separation user for the childhurd") (home-directory "/var/empty") (shell (file-append shadow "/sbin/nologin")) -- cgit v1.2.3