On 17/05/19 06:35, Jason Wang wrote: >> Yes, your honor. :) The helper is the only way for unprivileged users >> to set up TAP networking, which is basically the only really way to have >> *working* network. It's widely used in the wild, it's self-contained >> and the only alternative for users is the S-word (hint, it's five >> letters long and ends with LIRP). > > The issue is it can't deal with e.g vhost-net and multiqueue.
vhost-net does work with qemu-bridge-helper, the problem is that distros set its permissions to 600 and there is really no reason for that. There is also no reason why multiqueue shouldn't work with qemu-bridge-helper, all it would take is a new command line argument --num-queues probably. Paolo > We can > have a simple privileged launcher to do network configuration and pass > the fds to unprivileged qemu.
