From: Anthony Liguori <anthony@codemonkey.ws>
To: "Daniel P. Berrange" <berrange@redhat.com>
Cc: qemu-devel@nongnu.org
Subject: Re: [Qemu-devel] PATCH: Control over drive open modes for backing file
Date: Fri, 01 Aug 2008 09:48:10 -0500 [thread overview]
Message-ID: <4893222A.6050101@codemonkey.ws> (raw)
In-Reply-To: <20080801091809.GJ23993@redhat.com>
Daniel P. Berrange wrote:
> On Thu, Jul 31, 2008 at 01:26:17PM -0500, Anthony Liguori wrote:
>
>> So while I think it's valid to have a "read-only disk" exposed to the
>> guest, I don't think the user should have anything to do with how we
>> open the file.
>>
>> Is there some specific circumstance you are trying to support?
>>
>
> The scenario is that the admin wants to assign a read only disk to the
> virtual machine - typically the same disk to multiple machines - and
> thus want to guarentee that no one VM can write to it, since bad things
> happen if you do that with non-cluster filesystems.
>
> Controlling this based on the underlying permissions of the file backing
> the drive is not practical. Things like udev happy set permissions on
> devices in /dev/ behind your back, so you'd have to edit the horrible udev
> config files to make /dev/sdXX readonly. It is a far simpler task to
> simply add ,mode=ro to the QEMU command line for -drive to accomplish
> this, than finding the obscure file to edit to make the underling file
> have read only permissions
>
Right, but my point is that ,mode=ro does not have to force QEMU to open
the file O_RDONLY. It simply needs to prevent writes from happening.
But it's important to be able to expose this property to the guest, so
,mode=ro should not be allowed for disks that do not support exposing
their read-only-ness to the guest.
Regards,
Anthony Liguori
> Daniel
>
next prev parent reply other threads:[~2008-08-01 14:48 UTC|newest]
Thread overview: 21+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-07-31 11:31 [Qemu-devel] PATCH: Control over drive open modes for backing file Daniel P. Berrange
2008-07-31 12:15 ` Jamie Lokier
2008-07-31 13:08 ` Daniel P. Berrange
2008-07-31 13:34 ` Daniel P. Berrange
2008-07-31 13:46 ` Paul Brook
2008-07-31 13:55 ` Daniel P. Berrange
2008-07-31 15:05 ` Blue Swirl
2008-07-31 16:01 ` Jamie Lokier
2008-07-31 16:10 ` Daniel P. Berrange
2008-07-31 18:07 ` Blue Swirl
2008-07-31 14:58 ` Chris Wedgwood
2008-07-31 18:26 ` Anthony Liguori
2008-07-31 18:59 ` Jamie Lokier
2008-07-31 19:37 ` Anthony Liguori
2008-08-01 7:46 ` Jamie Lokier
2008-08-01 15:14 ` Anthony Liguori
2008-08-01 9:18 ` Daniel P. Berrange
2008-08-01 14:48 ` Anthony Liguori [this message]
2008-08-01 16:47 ` Ian Jackson
2008-08-01 17:09 ` Anthony Liguori
2008-08-01 17:10 ` Jamie Lokier
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4893222A.6050101@codemonkey.ws \
--to=anthony@codemonkey.ws \
--cc=berrange@redhat.com \
--cc=qemu-devel@nongnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.