add --description to systemd scope unit

otherwise, long kvm commands lead to systemd unit files with
very long lines, with confuses the systemd unit file parser.

apparently systemd has a length limit for unit file lines and
(line-)breaks the description string at that point. since
the rest of the description is probably not a valid key/value
pair, this leads to warnings. the default semantics of systemd-run
is to use the executed command as description unless a description
is specified explicitly.

note that this behaviour of systemd could allow an attacker
with access to the VM configuration to craft a kvm commandline
that starts or stops arbitrary systemd units.

PVE/QemuServer.pm

@@ -2762,6 +2762,7 @@ sub config_to_command {
     push @$cmd, '--scope';
     push @$cmd, '--slice', "qemu";
     push @$cmd, '--unit', $vmid;
+    push @$cmd, '--description', "'Proxmox VE VM $vmid'";
     # set KillMode=none, so that systemd don't kill those scopes
     # at shutdown (pve-manager service should stop the VMs instead)
     push @$cmd, '-p', "KillMode=none";

changelog.Debian

@@ -2,6 +2,8 @@ qemu-server (4.0-75) unstable; urgency=medium
 
   * fix #975, use new keyAlias feature.
 
+  * add --description to systemd scope unit
+
  -- Proxmox Support Team <support@proxmox.com>  Wed, 11 May 2016 11:15:56 +0200
 
 qemu-server (4.0-74) unstable; urgency=medium