Transition nova to privsep (partial)
Transition away from using rootwrap for escalated permissions, and use privsep instead.
Discussion happened at the Queens PTG: https:/
Blueprint information
- Status:
- Complete
- Approver:
- Michael Still
- Priority:
- Low
- Drafter:
- Michael Still
- Direction:
- Approved
- Assignee:
- Michael Still
- Definition:
- Approved
- Series goal:
- Accepted for queens
- Implementation:
-
Implemented
- Milestone target:
-
queens-rc1
- Started by
- Matt Riedemann
- Completed by
- Matt Riedemann
Related branches
Related bugs
Sprints
Whiteboard
https:/
Gerrit topic: https:/
Addressed by: https:/
Move nbd commands to privsep.
Addressed by: https:/
Move lvm handling to privsep.
Addressed by: https:/
Move xend existence probes to privsep.
Addressed by: https:/
Move shred to privsep.
Addressed by: https:/
Cleanup mount / umount and associated rmdir calls
Addressed by: https:/
WIP / Aspirational: we don't need rootwrap any more.
Addressed by: https:/
Don't shell out to mkdir, use ensure_tree()
Addressed by: https:/
Move loopback setup and removal to privsep.
Addressed by: https:/
Move ploop commands to privsep.
Addressed by: https:/
Move the idmapshift binary into privsep.
Addressed by: https:/
Move kpartx calls to privsep.
Addressed by: https:/
Move libvirts dmcrypt support to privsep.
Addressed by: https:/
Move blkid calls to privsep.
Addressed by: https:/
Use symbolic names for capabilities, expand sys_admin context.
Addressed by: https:/
Move the dac_admin privsep code to a new location.
Addressed by: https:/
Squash dac_admin privsep context.
Addressed by: https:/
Squash dacnet_admin privsep context.
Gerrit topic: https:/
Gerrit topic: https:/
Addressed by: https:/
Read from console ptys using privsep.
Addressed by: https:/
Move libvirts qemu-img support to privsep.
Addressed by: https:/
test_
Addressed by: https:/
Convert IVS VIF plugging / unplugging to privsep.
Addressed by: https:/
Move infiniband vif plugging to privsep.
Addressed by: https:/
Move midonet vif plugging to privsep.
Addressed by: https:/
Move plumgrid vif plugging to privsep.
Addressed by: https:/
Move control vif plugging to privsep.
Addressed by: https:/
Convert ext filesystem resizes to privsep.
Addressed by: https:/
Move flushing block devices to privsep.
Addressed by: https:/
Start moving users of parted to privsep.
Addressed by: https:/
Move remaining uses of parted to privsep.
Addressed by: https:/
Convert users of tune2fs to privsep.
Addressed by: https:/
Move makefs to privsep
There are still some outstanding changes for this but we're past the feature freeze for Queens so I'm going to mark this as complete for Queens and we can open a blueprint for Rocky for continuing the work if someone is going to do so. -- mriedem 20180127
Addressed by: https:/
Move configurable mkfs to privsep.
Addressed by: https:/
Move xenapi xenstore_read's to privsep.
Addressed by: https:/
Move xenapi disk resizing to privsep.
Addressed by: https:/
Move xenapi partition copies to privsep.
Addressed by: https:/
Move image conversion to privsep.
Addressed by: https:/
We no longer need rootwrap.
Addressed by: https:/
We don't need utils.trycmd any more.
Addressed by: https:/
Sync xenapi and libvirt on what flags to pass e2fsck.
