ShuriZma
/
xemu
mirror of https://github.com/xemu-project/xemu.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

hw/9pfs: Handle Security model parsing 

Except local fs driver all other fs drivers (handle, synth) don't need
security model. Update fsdev parameter parsing accordingly.

Signed-off-by: M. Mohan Kumar <mohan@in.ibm.com>
Signed-off-by: Aneesh Kumar K.V <aneesh.kumar@linux.vnet.ibm.com>
This commit is contained in:
M. Mohan Kumar 2011-10-14 12:59:37 +05:30 committed by Aneesh Kumar K.V
parent b97400caef
commit d9b36a6e56
3 changed files with 27 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
fsdev/qemu-fsdev.c
View File

@ -58,8 +58,15 @@ int qemu_fsdev_add(QemuOpts *opts)
return -1; return -1;
} }
if (!sec_model) { if (!strcmp(fsdriver, "local") && !sec_model) {
fprintf(stderr, "fsdev: No security_model specified.\n"); fprintf(stderr, "security model not specified, "
"local fs needs security model\nvalid options are:"
"\tsecurity_model=[passthrough|mapped|none]\n");
return -1;
}
if (strcmp(fsdriver, "local") && sec_model) {
fprintf(stderr, "only local fs driver needs security model\n");
return -1; return -1;
} }
@ -80,6 +87,10 @@ int qemu_fsdev_add(QemuOpts *opts)
} }
} }
if (strcmp(fsdriver, "local")) {
goto done;
}
if (!strcmp(sec_model, "passthrough")) { if (!strcmp(sec_model, "passthrough")) {
fsle->fse.export_flags |= V9FS_SM_PASSTHROUGH; fsle->fse.export_flags |= V9FS_SM_PASSTHROUGH;
} else if (!strcmp(sec_model, "mapped")) { } else if (!strcmp(sec_model, "mapped")) {
@ -87,14 +98,11 @@ int qemu_fsdev_add(QemuOpts *opts)
} else if (!strcmp(sec_model, "none")) { } else if (!strcmp(sec_model, "none")) {
fsle->fse.export_flags |= V9FS_SM_NONE; fsle->fse.export_flags |= V9FS_SM_NONE;
} else { } else {
fprintf(stderr, "Default to security_model=none. You may want" fprintf(stderr, "Invalid security model %s specified, valid options are"
" enable advanced security model using " "\n\t [passthrough|mapped|none]\n", sec_model);
"security option:\n\t security_model=passthrough\n\t " return -1;
"security_model=mapped\n");
fsle->fse.export_flags |= V9FS_SM_NONE;
} }
done:
QTAILQ_INSERT_TAIL(&fsdriver_entries, fsle, next); QTAILQ_INSERT_TAIL(&fsdriver_entries, fsle, next);
return 0; return 0;
} }

12
qemu-options.hx
View File

@ -527,13 +527,13 @@ DEFHEADING()
DEFHEADING(File system options:) DEFHEADING(File system options:)
DEF("fsdev", HAS_ARG, QEMU_OPTION_fsdev, DEF("fsdev", HAS_ARG, QEMU_OPTION_fsdev,
"-fsdev fsdriver,id=id,path=path,security_model=[mapped|passthrough|none]\n" "-fsdev fsdriver,id=id,path=path,[security_model={mapped|passthrough|none}]\n"
" [,writeout=immediate]\n", " [,writeout=immediate]\n",
QEMU_ARCH_ALL) QEMU_ARCH_ALL)
STEXI STEXI
@item -fsdev @var{fsdriver},id=@var{id},path=@var{path},security_model=@var{security_model}[,writeout=@var{writeout}] @item -fsdev @var{fsdriver},id=@var{id},path=@var{path},[security_model=@var{security_model}][,writeout=@var{writeout}]
@findex -fsdev @findex -fsdev
Define a new file system device. Valid options are: Define a new file system device. Valid options are:
@table @option @table @option
@ -555,7 +555,9 @@ attributes like uid, gid, mode bits and link target are stored as
file attributes. Directories exported by this security model cannot file attributes. Directories exported by this security model cannot
interact with other unix tools. "none" security model is same as interact with other unix tools. "none" security model is same as
passthrough except the sever won't report failures if it fails to passthrough except the sever won't report failures if it fails to
set file attributes like ownership. set file attributes like ownership. Security model is mandatory
only for local fsdriver. Other fsdrivers (like handle) don't take
security model as a parameter.
@item writeout=@var{writeout} @item writeout=@var{writeout}
This is an optional argument. The only supported value is "immediate". This is an optional argument. The only supported value is "immediate".
This means that host page cache will be used to read and write data but This means that host page cache will be used to read and write data but
@ -609,7 +611,9 @@ attributes like uid, gid, mode bits and link target are stored as
file attributes. Directories exported by this security model cannot file attributes. Directories exported by this security model cannot
interact with other unix tools. "none" security model is same as interact with other unix tools. "none" security model is same as
passthrough except the sever won't report failures if it fails to passthrough except the sever won't report failures if it fails to
set file attributes like ownership. set file attributes like ownership. Security model is mandatory only
for local fsdriver. Other fsdrivers (like handle) don't take security
model as a parameter.
@item writeout=@var{writeout} @item writeout=@var{writeout}
This is an optional argument. The only supported value is "immediate". This is an optional argument. The only supported value is "immediate".
This means that host page cache will be used to read and write data but This means that host page cache will be used to read and write data but

6
vl.c
View File

@ -2800,14 +2800,12 @@ int main(int argc, char **argv, char **envp)
if (qemu_opt_get(opts, "fsdriver") == NULL || if (qemu_opt_get(opts, "fsdriver") == NULL ||
qemu_opt_get(opts, "mount_tag") == NULL || qemu_opt_get(opts, "mount_tag") == NULL ||
qemu_opt_get(opts, "path") == NULL || qemu_opt_get(opts, "path") == NULL) {
qemu_opt_get(opts, "security_model") == NULL) {
fprintf(stderr, "Usage: -virtfs fsdriver,path=/share_path/," fprintf(stderr, "Usage: -virtfs fsdriver,path=/share_path/,"
"security_model=[mapped|passthrough|none]," "[security_model={mapped|passthrough|none}],"
"mount_tag=tag.\n"); "mount_tag=tag.\n");
exit(1); exit(1);
} }
fsdev = qemu_opts_create(qemu_find_opts("fsdev"), fsdev = qemu_opts_create(qemu_find_opts("fsdev"),
qemu_opt_get(opts, "mount_tag"), 1); qemu_opt_get(opts, "mount_tag"), 1);
if (!fsdev) { if (!fsdev) {