From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([140.186.70.92]:37054)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <coreyb@linux.vnet.ibm.com>) id 1QlhV7-0008E7-Tm
	for qemu-devel@nongnu.org; Tue, 26 Jul 2011 09:16:49 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <coreyb@linux.vnet.ibm.com>) id 1QlhV6-000653-Ov
	for qemu-devel@nongnu.org; Tue, 26 Jul 2011 09:16:45 -0400
Received: from e39.co.us.ibm.com ([32.97.110.160]:36583)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <coreyb@linux.vnet.ibm.com>) id 1QlhV6-00064z-Jl
	for qemu-devel@nongnu.org; Tue, 26 Jul 2011 09:16:44 -0400
Received: from d03relay02.boulder.ibm.com (d03relay02.boulder.ibm.com
	[9.17.195.227])
	by e39.co.us.ibm.com (8.14.4/8.13.1) with ESMTP id p6QD1o9r018471
	for <qemu-devel@nongnu.org>; Tue, 26 Jul 2011 07:01:50 -0600
Received: from d03av02.boulder.ibm.com (d03av02.boulder.ibm.com [9.17.195.168])
	by d03relay02.boulder.ibm.com (8.13.8/8.13.8/NCO v9.1) with ESMTP id
	p6QDGZ9S104184
	for <qemu-devel@nongnu.org>; Tue, 26 Jul 2011 07:16:37 -0600
Received: from d03av02.boulder.ibm.com (loopback [127.0.0.1])
	by d03av02.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP
	id p6Q7FMIg027060
	for <qemu-devel@nongnu.org>; Tue, 26 Jul 2011 01:15:22 -0600
Received: from localhost.localdomain (dyn9044125135.raleigh.ibm.com
	[9.44.125.135])
	by d03av02.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id
	p6Q7FKlE026889
	for <qemu-devel@nongnu.org>; Tue, 26 Jul 2011 01:15:21 -0600
Message-ID: <4E2EBE03.2030103@linux.vnet.ibm.com>
Date: Tue, 26 Jul 2011 09:15:47 -0400
From: Corey Bryant <coreyb@linux.vnet.ibm.com>
MIME-Version: 1.0
References: <1311684710-27074-1-git-send-email-coreyb@linux.vnet.ibm.com>
	<20110726130211.GA2853@lst.de>
In-Reply-To: <20110726130211.GA2853@lst.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [Qemu-devel] [PATCH v3] Add support for fd: protocol
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org



On 07/26/2011 09:02 AM, Christoph Hellwig wrote:
> I have to say I really hate it.  We've been working hard on getting rid
> of special cases in the qemu block layer, and this sprinkles them all
> over.  I'd recommend to fix your security model instead.

I understand your point on special casing.  The special cases are 
temporarily fencing off re-opening of image files.  In fact, the entire 
patch should be temporary, fixing Qemu's security model until a time 
when NFS can provide support that enables sVirt isolation.

Regards,
Corey