@@ -55,6 +55,7 @@ typedef struct FsContext
SecModel fs_sm;
uid_t uid;
struct xattr_operations **xops;
+ int flags;
} FsContext;
void cred_init(FsCred *);
@@ -28,11 +28,12 @@ static FsTypeTable FsTypes[] = {
int qemu_fsdev_add(QemuOpts *opts)
{
struct FsTypeListEntry *fsle;
- int i;
+ int i, flags;
const char *fsdev_id = qemu_opts_id(opts);
const char *fstype = qemu_opt_get(opts, "fstype");
const char *path = qemu_opt_get(opts, "path");
const char *sec_model = qemu_opt_get(opts, "security_model");
+ const char *readonly = qemu_opt_get(opts, "readonly");
if (!fsdev_id) {
fprintf(stderr, "fsdev: No id specified\n");
@@ -65,12 +66,26 @@ int qemu_fsdev_add(QemuOpts *opts)
return -1;
}
+ flags = 0;
+ if (readonly) {
+ if (!strcmp(readonly, "on")) {
+ flags |= MS_RDONLY;
+ } else if (!strcmp(readonly, "off")) {
+ flags &= ~MS_RDONLY;
+ } else {
+ fprintf(stderr, "fsdev: Invalid readonly method specified.\n");
+ fprintf(stderr, "fsdev: readonly=on|off\n");
+ return -1;
+ }
+ }
+
fsle = qemu_malloc(sizeof(*fsle));
fsle->fse.fsdev_id = qemu_strdup(fsdev_id);
fsle->fse.path = qemu_strdup(path);
fsle->fse.security_model = qemu_strdup(sec_model);
fsle->fse.ops = FsTypes[i].ops;
+ fsle->fse.flags = flags;
QTAILQ_INSERT_TAIL(&fstype_entries, fsle, next);
return 0;
@@ -42,6 +42,7 @@ typedef struct FsTypeEntry {
char *path;
char *security_model;
FileOperations *ops;
+ int flags;
} FsTypeEntry;
typedef struct FsTypeListEntry {
@@ -52,4 +53,6 @@ typedef struct FsTypeListEntry {
int qemu_fsdev_add(QemuOpts *opts);
FsTypeEntry *get_fsdev_fsentry(char *id);
extern FileOperations local_ops;
+
+#define MS_RDONLY 0x01
#endif
@@ -107,6 +107,11 @@ VirtIODevice *virtio_9p_init(DeviceState *dev, V9fsConf *conf)
s->ctx.xops = none_xattr_ops;
}
+ s->ctx.flags = 0;
+ if (fse->flags & MS_RDONLY) {
+ s->ctx.flags |= MS_RDONLY;
+ }
+
if (lstat(fse->path, &stat)) {
fprintf(stderr, "share path %s does not exist\n", fse->path);
exit(1);
@@ -1192,6 +1192,11 @@ static void v9fs_fix_path(V9fsString *dst, V9fsString *src, int len)
v9fs_string_free(&str);
}
+static inline bool is_ro_export(FsContext *fs_ctx)
+{
+ return fs_ctx->flags & MS_RDONLY;
+}
+
static void v9fs_version(V9fsState *s, V9fsPDU *pdu)
{
V9fsString version;
@@ -1734,6 +1739,11 @@ static void v9fs_open_post_lstat(V9fsState *s, V9fsOpenState *vs, int err)
vs->fidp->fs.dir = v9fs_do_opendir(s, &vs->fidp->path);
v9fs_open_post_opendir(s, vs, err);
} else {
+ if (is_ro_export(&s->ctx) &&
+ (vs->mode & O_WRONLY || vs->mode & O_RDWR || vs->mode & O_APPEND)) {
+ err = -EROFS;
+ goto out;
+ }
if (s->proto_version == V9FS_PROTO_2000L) {
flags = vs->mode;
flags &= ~(O_NOCTTY | O_ASYNC | O_CREAT);
@@ -3606,6 +3616,33 @@ static pdu_handler_t *pdu_handlers[] = {
[P9_TREMOVE] = v9fs_remove,
};
+static inline bool is_read_only_op(int id)
+{
+ switch (id) {
+ case P9_TREADDIR:
+ case P9_TSTATFS:
+ case P9_TGETATTR:
+ case P9_TXATTRWALK:
+ case P9_TLOCK:
+ case P9_TGETLOCK:
+ case P9_TREADLINK:
+ case P9_TVERSION:
+ case P9_TLOPEN:
+ case P9_TATTACH:
+ case P9_TSTAT:
+ case P9_TWALK:
+ case P9_TCLUNK:
+ case P9_TFSYNC:
+ case P9_TOPEN:
+ case P9_TREAD:
+ case P9_TAUTH:
+ case P9_TFLUSH:
+ return 1;
+ default:
+ return 0;
+ }
+}
+
static void submit_pdu(V9fsState *s, V9fsPDU *pdu)
{
pdu_handler_t *handler;
@@ -3619,6 +3656,10 @@ static void submit_pdu(V9fsState *s, V9fsPDU *pdu)
handler = pdu_handlers[pdu->id];
BUG_ON(handler == NULL);
+ if (is_ro_export(&s->ctx) && !is_read_only_op(pdu->id)) {
+ complete_pdu(s, pdu, -EROFS);
+ return;
+ }
handler(s, pdu);
}
@@ -170,7 +170,11 @@ QemuOptsList qemu_fsdev_opts = {
}, {
.name = "security_model",
.type = QEMU_OPT_STRING,
+ }, {
+ .name = "readonly",
+ .type = QEMU_OPT_STRING,
},
+
{ /*End of list */ }
},
};
@@ -192,6 +196,9 @@ QemuOptsList qemu_virtfs_opts = {
}, {
.name = "security_model",
.type = QEMU_OPT_STRING,
+ }, {
+ .name = "readonly",
+ .type = QEMU_OPT_STRING,
},
{ /*End of list */ }
@@ -2483,6 +2483,7 @@ int main(int argc, char **argv, char **envp)
qemu_opt_set(fsdev, "security_model",
qemu_opt_get(opts, "security_model"));
+ qemu_opt_set(fsdev, "readonly", qemu_opt_get(opts, "readonly"));
device = qemu_opts_create(qemu_find_opts("device"), NULL, 0);
qemu_opt_set(device, "driver", "virtio-9p-pci");
qemu_opt_set(device, "fsdev",
A new fsdev parameter "readonly" is introduced to control accessing 9p export. readonly=on|off can be used to specify the access type. By default rw access is given to 9p export. Signed-off-by: M. Mohan Kumar <mohan@in.ibm.com> --- Changes from previous version: * Use "readonly" option instead of "access" * Change function return type to boolean where its needed fsdev/file-op-9p.h | 1 + fsdev/qemu-fsdev.c | 17 ++++++++++++++++- fsdev/qemu-fsdev.h | 3 +++ hw/9pfs/virtio-9p-device.c | 5 +++++ hw/9pfs/virtio-9p.c | 41 +++++++++++++++++++++++++++++++++++++++++ qemu-config.c | 7 +++++++ vl.c | 1 + 7 files changed, 74 insertions(+), 1 deletions(-)