From: Jim Fehlig <jfehlig@suse.com>
To: xen-devel@lists.xen.org
Cc: ian.jackson@eu.citrix.com, wei.liu2@citrix.com,
ian.campbell@citrix.com, stefano.stabellini@eu.citrix.com
Subject: Re: [PATCH V2] libxl: relax readonly check introduced by XSA-142 fix
Date: Fri, 13 Nov 2015 09:56:25 -0700 [thread overview]
Message-ID: <56461639.6080504@suse.com> (raw)
In-Reply-To: <1447382446-14210-1-git-send-email-jfehlig@suse.com>
On 11/12/2015 07:40 PM, Jim Fehlig wrote:
> The fix for XSA-142 is quite a big hammer, rejecting readonly
> disk configuration even when the requested backend is known to
> support readonly. While it is true that qemu doesn't support
> readonly for emulated IDE or AHCI disks
>
> $ /usr/lib/xen/bin/qemu-system-i386 \
> -drive file=/tmp/disk.raw,if=ide,media=disk,format=raw,readonly=on
> qemu-system-i386: Can't use a read-only drive
>
> $ /usr/lib/xen/bin/qemu-system-i386 -device ahci,id=ahci0 \
> -drive file=/tmp/disk.raw,if=none,id=ahcidisk-0,format=raw,readonly=on \
> -device ide-hd,bus=ahci0.0,unit=0,drive=ahcidisk-0
> qemu-system-i386: -device ide-hd,bus=ahci0.0,unit=0,drive=ahcidisk-0:
> Can't use a read-only drive
>
> It does support readonly SCSI disks
>
> $ /usr/lib/xen/bin/qemu-system-i386 \
> -drive file=/tmp/disk.raw,if=scsi,media=disk,format=raw,readonly=on
> [ok]
>
> Inside a guest using such a disk, the SCSI kernel driver sees write
> protect on
>
> [ 7.339232] sd 2:0:1:0: [sdb] Write Protect is on
>
> Also, PV drivers support readonly, but the patch rejects such
> configuration even when PV drivers (vdev=xvd*) have been explicitly
> specified and creation of an emulated twin is skiped.
>
> This follow-up patch loosens the restriction to reject readonly when
> creating and emulated IDE or AHCI disk, but allows it when the backend
s/and/an/. I can fix this typo if a V3 is needed.
Regards,
Jim
> is known to support readonly.
>
> Signed-off-by: Jim Fehlig <jfehlig@suse.com>
> ---
>
> V2: Along with IDE+readonly, blacklist AHCI+readonly since it is not
> supported by qemu either.
>
> tools/libxl/libxl_dm.c | 29 ++++++++++++++++-------------
> 1 file changed, 16 insertions(+), 13 deletions(-)
>
> diff --git a/tools/libxl/libxl_dm.c b/tools/libxl/libxl_dm.c
> index 9c9eaa3..cb6deec 100644
> --- a/tools/libxl/libxl_dm.c
> +++ b/tools/libxl/libxl_dm.c
> @@ -1152,12 +1152,6 @@ static int libxl__build_device_model_args_new(libxl__gc *gc,
> (gc, "file=%s,if=ide,index=%d,readonly=%s,media=cdrom,format=%s,cache=writeback,id=ide-%i",
> disks[i].pdev_path, disk, disks[i].readwrite ? "off" : "on", format, dev_number);
> } else {
> - if (!disks[i].readwrite) {
> - LOG(ERROR,
> - "qemu-xen doesn't support read-only disk drivers");
> - return ERROR_INVAL;
> - }
> -
> if (disks[i].format == LIBXL_DISK_FORMAT_EMPTY) {
> LOG(WARN, "cannot support"" empty disk format for %s",
> disks[i].vdev);
> @@ -1185,29 +1179,38 @@ static int libxl__build_device_model_args_new(libxl__gc *gc,
> * For other disks we translate devices 0..3 into
> * hd[a-d] and ignore the rest.
> */
> - if (strncmp(disks[i].vdev, "sd", 2) == 0)
> + if (strncmp(disks[i].vdev, "sd", 2) == 0) {
> drive = libxl__sprintf
> - (gc, "file=%s,if=scsi,bus=0,unit=%d,format=%s,cache=writeback",
> - pdev_path, disk, format);
> - else if (strncmp(disks[i].vdev, "xvd", 3) == 0)
> + (gc, "file=%s,if=scsi,bus=0,unit=%d,format=%s,readonly=%s,cache=writeback",
> + pdev_path, disk, format, disks[i].readwrite ? "off" : "on");
> + } else if (strncmp(disks[i].vdev, "xvd", 3) == 0) {
> /*
> * Do not add any emulated disk when PV disk are
> * explicitly asked for.
> */
> continue;
> - else if (disk < 6 && b_info->u.hvm.hdtype == LIBXL_HDTYPE_AHCI) {
> + } else if (disk < 6 && b_info->u.hvm.hdtype == LIBXL_HDTYPE_AHCI) {
> + if (!disks[i].readwrite) {
> + LOG(ERROR, "qemu-xen doesn't support read-only AHCI disk drivers");
> + return ERROR_INVAL;
> + }
> flexarray_vappend(dm_args, "-drive",
> GCSPRINTF("file=%s,if=none,id=ahcidisk-%d,format=%s,cache=writeback",
> pdev_path, disk, format),
> "-device", GCSPRINTF("ide-hd,bus=ahci0.%d,unit=0,drive=ahcidisk-%d",
> disk, disk), NULL);
> continue;
> - } else if (disk < 4)
> + } else if (disk < 4) {
> + if (!disks[i].readwrite) {
> + LOG(ERROR, "qemu-xen doesn't support read-only IDE disk drivers");
> + return ERROR_INVAL;
> + }
> drive = libxl__sprintf
> (gc, "file=%s,if=ide,index=%d,media=disk,format=%s,cache=writeback",
> pdev_path, disk, format);
> - else
> + } else {
> continue; /* Do not emulate this disk */
> + }
> }
>
> flexarray_append(dm_args, "-drive");
next prev parent reply other threads:[~2015-11-13 16:56 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-11-13 2:40 [PATCH V2] libxl: relax readonly check introduced by XSA-142 fix Jim Fehlig
2015-11-13 10:38 ` Stefano Stabellini
2015-11-13 16:56 ` Jim Fehlig [this message]
2015-11-16 12:09 ` Ian Campbell
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=56461639.6080504@suse.com \
--to=jfehlig@suse.com \
--cc=ian.campbell@citrix.com \
--cc=ian.jackson@eu.citrix.com \
--cc=stefano.stabellini@eu.citrix.com \
--cc=wei.liu2@citrix.com \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.