FS#72932 - [qemu] The sandbox option elevelateprivileges=deny does not work with -daemonize
Attached to Project:
Arch Linux
Opened by Nathan Kennedy (pelgrimp) - Monday, 06 December 2021, 02:48 GMT
Last edited by David Runge (dvzrv) - Saturday, 19 February 2022, 18:45 GMT
Opened by Nathan Kennedy (pelgrimp) - Monday, 06 December 2021, 02:48 GMT
Last edited by David Runge (dvzrv) - Saturday, 19 February 2022, 18:45 GMT
|
Details
Description:
qemu will not launch if "-sandbox on,elevateprivileges=deny" and "-daemonize" are set at the same time. Additional info: * package version(s) qemu 6.1.0-5 * config and/or log files etc. journal of systemd Steps to reproduce: qemu-system-x86_64 -sandbox=on -nodefaults -daemonize -> runs normally qemu-system-x86_64 -sandbox on,elevateprivileges=deny -nodefaults -daemonize -> fails to launch 
journal.txt
(9.3 KiB)
|
This task depends upon
Closed by David Runge (dvzrv)
Saturday, 19 February 2022, 18:45 GMT
Reason for closing: Not a bug
Additional comments about closing: The described functionality is a feature not a bug (according to upstream: https://gitlab.com/qemu-project/qemu/-/i ssues/798)
Saturday, 19 February 2022, 18:45 GMT
Reason for closing: Not a bug
Additional comments about closing: The described functionality is a feature not a bug (according to upstream: https://gitlab.com/qemu-project/qemu/-/i ssues/798)
Have you reached out to upstream about this (as this is actually leading to a dumped core)?
On which kernel are you running qemu? Have you tried this on different kernels?
I ran on Linux 5.15.5-arch1-1, and recent updates to both the kernel and qemu apparently don't change the result.
(btw there is a typo in my "Steps to reproduce" above, but I don't know how to edit it. There should be no "=" between "-sandbox" and "on".)