* [Qemu-devel] Two quick requests.
@ 2007-02-09 22:19 Rob Landley
2007-02-09 22:27 ` Paul Brook
2007-02-12 23:25 ` [Qemu-devel] QEMU and SMP Option on dual core processor Danny Chieh-Yao, Cheng
0 siblings, 2 replies; 16+ messages in thread
From: Rob Landley @ 2007-02-09 22:19 UTC (permalink / raw)
To: qemu-devel
1) When you accidentally run qemu as root, could it NOT try to go into a
full-screen display by default resulting in a corrupted display you can't
break out of and have to power cycle the machine?
2) After said reboot, when you're sanely running qemu as a normal user but
using the hda image file you made as root, if a hard drive image isn't
writeable, could it warn or something, rather than having the ubuntu install
mysteriously fail halfway through when it finds itself unable to
mount /dev/hda1 after it thinks it just partitioned the drive? (The error
messages are a bit vague here, because it _thinks_ earlier steps succeeded.)
Thanks. 0.9.0 looks really nice. Are qops going in next?
Rob
--
"Perfection is reached, not when there is no longer anything to add, but
when there is no longer anything to take away." - Antoine de Saint-Exupery
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:19 [Qemu-devel] Two quick requests Rob Landley
@ 2007-02-09 22:27 ` Paul Brook
2007-02-09 22:33 ` Rob Landley
2007-02-09 22:33 ` Dan Shearer
2007-02-12 23:25 ` [Qemu-devel] QEMU and SMP Option on dual core processor Danny Chieh-Yao, Cheng
1 sibling, 2 replies; 16+ messages in thread
From: Paul Brook @ 2007-02-09 22:27 UTC (permalink / raw)
To: qemu-devel
On Friday 09 February 2007 22:19, Rob Landley wrote:
> 1) When you accidentally run qemu as root, could it NOT try to go into a
> full-screen display by default resulting in a corrupted display you can't
> break out of and have to power cycle the machine?
This is a feature of your SDL libraries. They're probably trying to use
console framebuffer output. Complain to whoever supplied your SDL libraries.
> 2) After said reboot, when you're sanely running qemu as a normal user but
> using the hda image file you made as root, if a hard drive image isn't
> writeable, could it warn or something, rather than having the ubuntu
> install mysteriously fail halfway through when it finds itself unable to
> mount /dev/hda1 after it thinks it just partitioned the drive?
I think this is also a feature. Previous versions would refuse to use readonly
images at all.
Paul
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:27 ` Paul Brook
@ 2007-02-09 22:33 ` Rob Landley
2007-02-09 22:33 ` Dan Shearer
1 sibling, 0 replies; 16+ messages in thread
From: Rob Landley @ 2007-02-09 22:33 UTC (permalink / raw)
To: Paul Brook; +Cc: qemu-devel
On Friday 09 February 2007 5:27 pm, Paul Brook wrote:
> On Friday 09 February 2007 22:19, Rob Landley wrote:
> > 1) When you accidentally run qemu as root, could it NOT try to go into a
> > full-screen display by default resulting in a corrupted display you can't
> > break out of and have to power cycle the machine?
>
> This is a feature of your SDL libraries. They're probably trying to use
> console framebuffer output. Complain to whoever supplied your SDL libraries.
Ubuntu. And yeah, probably.
> > 2) After said reboot, when you're sanely running qemu as a normal user but
> > using the hda image file you made as root, if a hard drive image isn't
> > writeable, could it warn or something, rather than having the ubuntu
> > install mysteriously fail halfway through when it finds itself unable to
> > mount /dev/hda1 after it thinks it just partitioned the drive?
>
> I think this is also a feature. Previous versions would refuse to use
readonly
> images at all.
Could it warn? (I admit it'll probably get buried in the "ubuntu doesn't
default to 1024 hz and you're not root" warning, but I spent a day trying to
figure this one out. Slow reboots, and I thought it was another side effect
of the KDE timeouts. :)
Thanks,
Rob
--
"Perfection is reached, not when there is no longer anything to add, but
when there is no longer anything to take away." - Antoine de Saint-Exupery
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:27 ` Paul Brook
2007-02-09 22:33 ` Rob Landley
@ 2007-02-09 22:33 ` Dan Shearer
2007-02-09 22:48 ` Paul Brook
1 sibling, 1 reply; 16+ messages in thread
From: Dan Shearer @ 2007-02-09 22:33 UTC (permalink / raw)
To: qemu-devel
On Fri, Feb 09, 2007 at 10:27:08PM +0000, Paul Brook wrote:
> On Friday 09 February 2007 22:19, Rob Landley wrote:
> > 1) When you accidentally run qemu as root, could it NOT try to go into a
> > full-screen display by default resulting in a corrupted display you can't
> > break out of and have to power cycle the machine?
>
> This is a feature of your SDL libraries. They're probably trying to use
> console framebuffer output. Complain to whoever supplied your SDL libraries.
True but I think Rob wants to prevent the "accidentally" bit because
that isn't the only bad thing you can do with QEMU as root by accident.
The user's intention can be (more or less) detected with a parameter
like "-force-run-as-root". Since once of QEMU's main points is to avoid
the need for root access I think that's reasonable.
--
Dan Shearer
dan@shearer.org
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:33 ` Dan Shearer
@ 2007-02-09 22:48 ` Paul Brook
2007-02-09 22:59 ` Ed Swierk
2007-02-10 11:53 ` CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.) Kevin F. Quinn
0 siblings, 2 replies; 16+ messages in thread
From: Paul Brook @ 2007-02-09 22:48 UTC (permalink / raw)
To: qemu-devel; +Cc: Dan Shearer
On Friday 09 February 2007 22:33, Dan Shearer wrote:
> On Fri, Feb 09, 2007 at 10:27:08PM +0000, Paul Brook wrote:
> > On Friday 09 February 2007 22:19, Rob Landley wrote:
> > > 1) When you accidentally run qemu as root, could it NOT try to go into
> > > a full-screen display by default resulting in a corrupted display you
> > > can't break out of and have to power cycle the machine?
> >
> > This is a feature of your SDL libraries. They're probably trying to use
> > console framebuffer output. Complain to whoever supplied your SDL
> > libraries.
>
> True but I think Rob wants to prevent the "accidentally" bit because
> that isn't the only bad thing you can do with QEMU as root by accident.
> The user's intention can be (more or less) detected with a parameter
> like "-force-run-as-root". Since once of QEMU's main points is to avoid
> the need for root access I think that's reasonable.
I've very little sympathy (read: none) for people who "accidentally" break
things by running them as root.
Paul
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:48 ` Paul Brook
@ 2007-02-09 22:59 ` Ed Swierk
2007-02-09 23:06 ` Paul Brook
2007-02-10 11:53 ` CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.) Kevin F. Quinn
1 sibling, 1 reply; 16+ messages in thread
From: Ed Swierk @ 2007-02-09 22:59 UTC (permalink / raw)
To: qemu-devel
On 2/9/07, Paul Brook <paul@codesourcery.com> wrote:
> I've very little sympathy (read: none) for people who "accidentally" break
> things by running them as root.
Sure, but there are plenty of other ways to accidentally mess up the
permissions of a disk image file. A while back I had to strace qemu to
figure out why file modifications were vanishing after rebooting the
VM; the culprit turned out to be an unrelated script that had set the
image file's mode to 444.
--Ed
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 22:59 ` Ed Swierk
@ 2007-02-09 23:06 ` Paul Brook
2007-02-10 15:37 ` Daniel Jacobowitz
2007-02-12 17:27 ` Rob Landley
0 siblings, 2 replies; 16+ messages in thread
From: Paul Brook @ 2007-02-09 23:06 UTC (permalink / raw)
To: qemu-devel
> Sure, but there are plenty of other ways to accidentally mess up the
> permissions of a disk image file. A while back I had to strace qemu to
> figure out why file modifications were vanishing after rebooting the
> VM; the culprit turned out to be an unrelated script that had set the
> image file's mode to 444.
If you really want to do this, do it properly. Make it an error to use a ro
image if the user [implicitly] requests rw access.
Paul
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 23:06 ` Paul Brook
@ 2007-02-10 15:37 ` Daniel Jacobowitz
2007-02-12 17:27 ` Rob Landley
1 sibling, 0 replies; 16+ messages in thread
From: Daniel Jacobowitz @ 2007-02-10 15:37 UTC (permalink / raw)
To: qemu-devel
On Fri, Feb 09, 2007 at 11:06:24PM +0000, Paul Brook wrote:
> > Sure, but there are plenty of other ways to accidentally mess up the
> > permissions of a disk image file. A while back I had to strace qemu to
> > figure out why file modifications were vanishing after rebooting the
> > VM; the culprit turned out to be an unrelated script that had set the
> > image file's mode to 444.
>
> If you really want to do this, do it properly. Make it an error to use a ro
> image if the user [implicitly] requests rw access.
But if you do this please be sure not to complain about rw COW images
based on readonly ones...
--
Daniel Jacobowitz
CodeSourcery
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-09 23:06 ` Paul Brook
2007-02-10 15:37 ` Daniel Jacobowitz
@ 2007-02-12 17:27 ` Rob Landley
2007-02-12 17:45 ` Paul Brook
2007-02-12 18:17 ` Jan Marten Simons
1 sibling, 2 replies; 16+ messages in thread
From: Rob Landley @ 2007-02-12 17:27 UTC (permalink / raw)
To: qemu-devel; +Cc: Paul Brook
On Friday 09 February 2007 6:06 pm, Paul Brook wrote:
> > Sure, but there are plenty of other ways to accidentally mess up the
> > permissions of a disk image file. A while back I had to strace qemu to
> > figure out why file modifications were vanishing after rebooting the
> > VM; the culprit turned out to be an unrelated script that had set the
> > image file's mode to 444.
>
> If you really want to do this, do it properly. Make it an error to use a ro
> image if the user [implicitly] requests rw access.
If there's no middle ground between "silently misbehave" and "refuse to start
if anything _might_ be wrong", then why does current qemu warn about the 1024
hz thing?
Just curious. Refusing to start would have saved me a day's debugging time,
just like the warning would have...
Rob
--
"Perfection is reached, not when there is no longer anything to add, but
when there is no longer anything to take away." - Antoine de Saint-Exupery
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-12 17:27 ` Rob Landley
@ 2007-02-12 17:45 ` Paul Brook
2007-02-12 18:17 ` Jan Marten Simons
1 sibling, 0 replies; 16+ messages in thread
From: Paul Brook @ 2007-02-12 17:45 UTC (permalink / raw)
To: Rob Landley; +Cc: qemu-devel
> > If you really want to do this, do it properly. Make it an error to use a
> > ro image if the user [implicitly] requests rw access.
>
> If there's no middle ground between "silently misbehave" and "refuse to
> start if anything _might_ be wrong", then why does current qemu warn about
> the 1024 hz thing?
Even at 1024Hz qemu still misbehaves, especially on heavily loaded hosts.
1024Hz is sufficient for most common operating systems most of the time, but
many will run happily without it. e.g. many linux kernels only need 100 or
250Hz.
Paul
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: [Qemu-devel] Two quick requests.
2007-02-12 17:27 ` Rob Landley
2007-02-12 17:45 ` Paul Brook
@ 2007-02-12 18:17 ` Jan Marten Simons
1 sibling, 0 replies; 16+ messages in thread
From: Jan Marten Simons @ 2007-02-12 18:17 UTC (permalink / raw)
To: qemu-devel
Rob Landley schrieb:
> On Friday 09 February 2007 6:06 pm, Paul Brook wrote:
>
>>> Sure, but there are plenty of other ways to accidentally mess up the
>>> permissions of a disk image file. A while back I had to strace qemu to
>>> figure out why file modifications were vanishing after rebooting the
>>> VM; the culprit turned out to be an unrelated script that had set the
>>> image file's mode to 444.
>>>
>> If you really want to do this, do it properly. Make it an error to use a ro
>> image if the user [implicitly] requests rw access.
>>
>
> If there's no middle ground between "silently misbehave" and "refuse to start
> if anything _might_ be wrong", then why does current qemu warn about the 1024
> hz thing?
>
> Just curious. Refusing to start would have saved me a day's debugging time,
> just like the warning would have...
>
> Rob
>
I think adding a simple (suppressable) warning on startup would be
sufficient in case of a ro image.
Jan
^ permalink raw reply [flat|nested] 16+ messages in thread
* CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.)
2007-02-09 22:48 ` Paul Brook
2007-02-09 22:59 ` Ed Swierk
@ 2007-02-10 11:53 ` Kevin F. Quinn
2007-02-10 15:11 ` Paul Brook
1 sibling, 1 reply; 16+ messages in thread
From: Kevin F. Quinn @ 2007-02-10 11:53 UTC (permalink / raw)
To: qemu-devel
[-- Attachment #1: Type: text/plain, Size: 1061 bytes --]
On Fri, 9 Feb 2007 22:48:51 +0000
Paul Brook <paul@codesourcery.com> wrote:
> I've very little sympathy (read: none) for people who "accidentally"
> break things by running them as root.
On a related note, I've been running qemu(-system 0.8.2) as root
recently as a hopefully temporary measure so that it can setup the
network interfaces. Recent linux kernels require CAP_NET_ADMIN for the
tun network configuration that qemu does (specifically the TUNSETIFF
ioctl), and the only way to get the capability is to start the process
as root.
Other capabilities could be dropped; as indeed could CAP_NET_ADMIN once
the network configuration is done, but that means modifications to qemu
itself to release the capabilities, and would still leave qemu as a
suid-root binary, which it would be nicer to avoid.
Is there any way around this? I expected to be able to configure
capabilities for executables in the filesystem, but it appears there
are serious problems with that concept so the kernel doesn't support
it.
--
Kevin F. Quinn
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
^ permalink raw reply [flat|nested] 16+ messages in thread
* [Qemu-devel] QEMU and SMP Option on dual core processor
2007-02-09 22:19 [Qemu-devel] Two quick requests Rob Landley
2007-02-09 22:27 ` Paul Brook
@ 2007-02-12 23:25 ` Danny Chieh-Yao, Cheng
1 sibling, 0 replies; 16+ messages in thread
From: Danny Chieh-Yao, Cheng @ 2007-02-12 23:25 UTC (permalink / raw)
To: qemu-devel
Hi all,
I am running a Centrino Duo on Windows XP Home SP2.
Here's the problem...
I want to run the option "-smp 2" with QEMU, but when I start it, it
says it cannot find cpu1. When I look into task manager and the
affinity, it's running on CPU0, but if I use imagecfg to set QEMU to run
on CPU1, it STILL give me the same error. Does anyone know of this problem?
Also, I tried to turn off one processor in BIOs, but there's no such
option either, I'm using ASUS A8JM laptop.
Regards,
Danny
^ permalink raw reply [flat|nested] 16+ messages in thread
* Re: CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.)
@ 2007-02-10 12:02 Ben Taylor
0 siblings, 0 replies; 16+ messages in thread
From: Ben Taylor @ 2007-02-10 12:02 UTC (permalink / raw)
To: qemu-devel
---- "Kevin F. Quinn" <ml@kevquinn.com> wrote:
> On Fri, 9 Feb 2007 22:48:51 +0000
> Paul Brook <paul@codesourcery.com> wrote:
>
> > I've very little sympathy (read: none) for people who "accidentally"
> > break things by running them as root.
>
> On a related note, I've been running qemu(-system 0.8.2) as root
> recently as a hopefully temporary measure so that it can setup the
> network interfaces. Recent linux kernels require CAP_NET_ADMIN for the
> tun network configuration that qemu does (specifically the TUNSETIFF
> ioctl), and the only way to get the capability is to start the process
> as root.
>
> Other capabilities could be dropped; as indeed could CAP_NET_ADMIN once
> the network configuration is done, but that means modifications to qemu
> itself to release the capabilities, and would still leave qemu as a
> suid-root binary, which it would be nicer to avoid.
>
> Is there any way around this? I expected to be able to configure
> capabilities for executables in the filesystem, but it appears there
> are serious problems with that concept so the kernel doesn't support
> it.
I just dealt with that. I got a patch for tap for Solaris and I have a setuid script
that creates the tap and uses the /etc/qemu-ifup script to configure the interface,
then calls a script with the file descriptor of the tap interface to a script which
then invokes qemu with the right parameteres.
Ben
^ permalink raw reply [flat|nested] 16+ messages in thread
end of thread, other threads:[~2007-02-12 23:25 UTC | newest]
Thread overview: 16+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-02-09 22:19 [Qemu-devel] Two quick requests Rob Landley
2007-02-09 22:27 ` Paul Brook
2007-02-09 22:33 ` Rob Landley
2007-02-09 22:33 ` Dan Shearer
2007-02-09 22:48 ` Paul Brook
2007-02-09 22:59 ` Ed Swierk
2007-02-09 23:06 ` Paul Brook
2007-02-10 15:37 ` Daniel Jacobowitz
2007-02-12 17:27 ` Rob Landley
2007-02-12 17:45 ` Paul Brook
2007-02-12 18:17 ` Jan Marten Simons
2007-02-10 11:53 ` CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.) Kevin F. Quinn
2007-02-10 15:11 ` Paul Brook
2007-02-12 9:49 ` Chris Friedhoff
2007-02-12 23:25 ` [Qemu-devel] QEMU and SMP Option on dual core processor Danny Chieh-Yao, Cheng
-- strict thread matches above, loose matches on Subject: below --
2007-02-10 12:02 CAP_NET_ADMIN (was Re: [Qemu-devel] Two quick requests.) Ben Taylor
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.