On Wed, Jan 23, 2013 at 07:15:27PM +0800, Liu Yuan wrote: > On 01/23/2013 07:10 PM, Daniel P. Berrange wrote: > > BTW, where is this local disk cache kept in the filesystem ? For proper > > security isolation between VMs, the cache location needs to be different > > for each VM and needs to be included in the SELinux policy. > > it is kept as default in /sheep_store/cache/vdi/xxx (users can specify > it to another path, such as a faster storage to boots performance) and > every VM has its dedicated directory to cache its own blocks (maps to > sheepdog objects). How is the cache path changed ? AFAIK, there's no way todo this in libvirt yet. What is path used for the VM specific directory ? This needs to be put into the SELinux/AppArmour policies otherwise sheepdog will just crash & burn when used in a environment with those active. Daniel -- |: http://berrange.com -o- http://www.flickr.com/photos/dberrange/ :| |: http://libvirt.org -o- http://virt-manager.org :| |: http://autobuild.org -o- http://search.cpan.org/~danberr/ :| |: http://entangle-photo.org -o- http://live.gnome.org/gtk-vnc :|