Description of problem: Change the QEMU DAC security driver so that it uses POSIX ACLs on files instead of changing their UID/GID. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
There's been various patches posted over the years but nothing committed, nor a solid approach chosen: Posix ACLs: v2: https://www.redhat.com/archives/libvir-list/2013-March/msg00203.html v3: https://www.redhat.com/archives/libvir-list/2013-March/msg00497.html v4: https://www.redhat.com/archives/libvir-list/2013-March/msg00887.html v5: https://www.redhat.com/archives/libvir-list/2013-March/msg01289.html Using virtlockd: v1: https://www.redhat.com/archives/libvir-list/2014-September/msg00551.html v2: https://www.redhat.com/archives/libvir-list/2015-October/msg00331.html
*** Bug 1120544 has been marked as a duplicate of this bug. ***
Current versions of libvirt use XATTR to remember ownership and restore it