Set permissions to /proc/xen/privcmd, so a user in qubes group can access

2015-02-07 06:26:51 -05:00 · 2015-02-07 06:26:51 -05:00 · 87bf833368
commit 87bf833368
parent 4366dd9ba7
1 changed files with 4 additions and 0 deletions
--- a/vm-systemd/qubes-sysinit.sh
+++ b/vm-systemd/qubes-sysinit.sh
@ -32,6 +32,10 @@ mkdir -p /var/run/xen-hotplug
 # Set permissions to /proc/xen/xenbus, so normal user can use qubesdb-read
 chmod 666 /proc/xen/xenbus

+# Set permissions to /proc/xen/privcmd, so a user in qubes group can access
+chmod 660 /proc/xen/privcmd
+chgrp qubes /proc/xen/privcmd
+
 [ -e /proc/u2mfn ] || modprobe u2mfn
 # Set permissions to files needed to listen at vchan
 chmod 666 /proc/u2mfn