On Mon, Sep 19, 2011 at 09:13:43PM -0700, Sage Weil wrote:
This improves the support for qemu rbd devices by adding support for a few
key features (e.g., authentication) and cleaning up the way in which
rbd configuration options are passed to qemu.
And auth member of the disk source xml specifies how librbd should
authenticate. The id property is the Ceph/RBD user to authenticate as,
and the domain property is a identifier (local to libvirt) for the Ceph
cluster in question. If both are specified, we look for a libvirt secret
of type CEPH with matching id and domain properties.
The old RBD support relied on setting an environment variable to
communicate information to qemu/librbd. Instead, pass those options
explicitly to qemu. Update the qemu argument parsing and unit tests
accordingly.
Signed-off-by: Sage Weil s...@newdream.net
---
src/qemu/qemu_command.c| 268
+++-
.../qemuxml2argv-disk-drive-network-rbd.args |6 +-
.../qemuxml2argv-disk-drive-network-rbd.xml|1 +
3 files changed, 157 insertions(+), 118 deletions(-)
+static int buildRBDString(virConnectPtr conn,
+ virDomainDiskDefPtr disk,
+ virBufferPtr opt)
+{
+int i;
+char idDomain[80];
+virSecretPtr sec;
+char *secret;
+size_t secret_size;
+
+virBufferAsprintf(opt, rbd:%s, disk-src);
+if (disk-authId) {
+virBufferEscape(opt, :, :id=%s, disk-authId);
+}
+if (disk-authDomain) {
+/* look up secret */
+snprintf(idDomain, sizeof(idDomain), %s/%s, disk-authId,
+ disk-authDomain);
+sec = virSecretLookupByUsage(conn,
+ VIR_SECRET_USAGE_TYPE_CEPH,
+ idDomain);
This is where you'd want to use virSecretLookupByUUID.
+if (sec) {
+char *base64;
+
+secret = (char *)conn-secretDriver-getValue(sec, secret_size,
0,
+ VIR_SECRET_GET_VALUE_INTERNAL_CALL);
No need for the cast to 'char *', since void * casts to anything in C.
But you do need to handle case of the return'd secret being 'NULL'
and return to the caller in that case.
+/* qemu/librbd wants it base64 encoded */
+base64_encode_alloc(secret, secret_size, base64);
+virBufferEscape(opt, :, :key=%s:auth_supported=cephx\\;none,
+base64);
+VIR_FREE(base64);
+VIR_FREE(secret);
+virUnrefSecret(sec);
+} else {
+VIR_WARN(rbd id '%s' domain '%s' specified but secret not
found,
+ disk-authId, disk-authDomain);
You ought to use qemuReportError() here and return to the caller
+}
+}
+if (disk-nhosts 0) {
+virBufferStrcat(opt, :mon_host=, NULL);
+for (i = 0; i disk-nhosts; ++i) {
+if (i) {
+virBufferStrcat(opt, \\;, NULL);
+}
+if (disk-hosts[i].port) {
+virBufferAsprintf(opt, %s\\:%s,
+ disk-hosts[i].name,
+ disk-hosts[i].port);
+} else {
+virBufferAsprintf(opt, %s, disk-hosts[i].name);
+}
+}
+}
+
+return 0;
+}
+
@@ -1453,8 +1594,9 @@ qemuBuildDriveStr(virConnectPtr conn,
disk-hosts-name, disk-hosts-port);
break;
case VIR_DOMAIN_DISK_PROTOCOL_RBD:
-/* TODO: set monitor hostnames */
-virBufferAsprintf(opt, file=rbd:%s,, disk-src);
+virBufferStrcat(opt, file=, NULL);
+buildRBDString(conn, disk, opt);
+virBufferStrcat(opt, ,, NULL);
break;
case VIR_DOMAIN_DISK_PROTOCOL_SHEEPDOG:
if (disk-nhosts == 0)
@@ -3597,24 +3715,11 @@ qemuBuildCommandLine(virConnectPtr conn,
}
break;
case VIR_DOMAIN_DISK_PROTOCOL_RBD:
-if (virAsprintf(file, rbd:%s,, disk-src) 0) {
-goto no_memory;
-}
-for (j = 0 ; j disk-nhosts ; j++) {
-if (!has_rbd_hosts) {
-virBufferAddLit(rbd_hosts, CEPH_ARGS=-m );
-has_rbd_hosts = true;
-} else {
-virBufferAddLit(rbd_hosts, ,);
-}
-virDomainDiskHostDefPtr host = disk-hosts[j];
-if (host-port) {
-virBufferAsprintf(rbd_hosts, %s:%s,
- host-name,
-
