Uploaded image for project: 'CloudStack'
  1. CloudStack
  2. CLOUDSTACK-9551

Pull KVM agent's tmp folder usage within its own folder structure

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 4.2.1, 4.7.1, 4.9.1.0
    • Fix Version/s: None
    • Component/s: None
    • Security Level: Public (Anyone can view this level - this is the default.)
    • Labels:
      None

      Description

      We ran into an issue today where the sysadmins wanted to put /tmp on its own mount and set the "noexec" mount flag as a security measure. This is incompatible with the CloudStack KVM agent, because it stores JNA tmp files here and Java is unable to map into these objects. To get around this we moved the agent's temp dir to live with the agent files, which seems like a reasonable thing to do regardless of whether you're trying to secure /tmp.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                aprateek Abhinandan Prateek
                Reporter:
                aprateek Abhinandan Prateek
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: