Merge remote-tracking branch 'woju/pull/5/head' into core3-devel
Makefile | 1 - doc/manpages/qvm-create.rst | 5 + etc/storage.conf | 13 - qubes/__init__.py | 82 +++++- qubes/config.py | 14 +- qubes/devices.py | 15 ++ qubes/storage/__init__.py | 591 +++++++++++++--------------------------- qubes/storage/kernels.py | 109 ++++++++ qubes/storage/xen.py | 643 +++++++++++++++++++++++++++++--------------- qubes/tests/__init__.py | 13 +- qubes/tests/int/basic.py | 5 +- qubes/tests/storage.py | 70 ++--- qubes/tests/storage_xen.py | 366 +++++++++++++++---------- qubes/tools/qvm_create.py | 18 +- qubes/vm/appvm.py | 38 ++- qubes/vm/qubesvm.py | 192 ++++++------- qubes/vm/templatevm.py | 45 +++- rpm_spec/core-dom0.spec | 2 +- setup.py | 1 + templates/libvirt/xen.xml | 32 ++- 20 files changed, 1313 insertions(+), 942 deletions(-)
This commit is contained in:
commit
487411be4c
1
Makefile
1
Makefile
@ -60,7 +60,6 @@ endif
|
|||||||
# $(MAKE) install -C tests
|
# $(MAKE) install -C tests
|
||||||
$(MAKE) install -C relaxng
|
$(MAKE) install -C relaxng
|
||||||
mkdir -p $(DESTDIR)/etc/qubes
|
mkdir -p $(DESTDIR)/etc/qubes
|
||||||
cp etc/storage.conf $(DESTDIR)/etc/qubes/
|
|
||||||
ifeq ($(BACKEND_VMM),xen)
|
ifeq ($(BACKEND_VMM),xen)
|
||||||
# Currently supported only on xen
|
# Currently supported only on xen
|
||||||
cp etc/qmemman.conf $(DESTDIR)/etc/qubes/
|
cp etc/qmemman.conf $(DESTDIR)/etc/qubes/
|
||||||
|
@ -53,6 +53,10 @@ Options
|
|||||||
Use provided :file:`root.img` instead of default/empty one (file will be
|
Use provided :file:`root.img` instead of default/empty one (file will be
|
||||||
*moved*). This option is mutually exclusive with :option:`--root-copy-from`.
|
*moved*). This option is mutually exclusive with :option:`--root-copy-from`.
|
||||||
|
|
||||||
|
.. option:: --pool=POOL_NAME:VOLUME_NAME, -P POOL_NAME:VOLUME_NAME
|
||||||
|
|
||||||
|
Specify the pool to use for a volume
|
||||||
|
|
||||||
Options for internal use
|
Options for internal use
|
||||||
------------------------
|
------------------------
|
||||||
|
|
||||||
@ -71,5 +75,6 @@ Authors
|
|||||||
| Rafal Wojtczuk <rafal at invisiblethingslab dot com>
|
| Rafal Wojtczuk <rafal at invisiblethingslab dot com>
|
||||||
| Marek Marczykowski <marmarek at invisiblethingslab dot com>
|
| Marek Marczykowski <marmarek at invisiblethingslab dot com>
|
||||||
| Wojtek Porczyk <woju at invisiblethingslab dot com>
|
| Wojtek Porczyk <woju at invisiblethingslab dot com>
|
||||||
|
| Bahtiar `kalkin-` Gadimov <bahtiar at gadimov dot de>
|
||||||
|
|
||||||
.. vim: ts=3 sw=3 et tw=80
|
.. vim: ts=3 sw=3 et tw=80
|
||||||
|
@ -1,13 +0,0 @@
|
|||||||
[default] ; poolname
|
|
||||||
driver=xen ; the default xen storage
|
|
||||||
; class = qubes.storage.xen.XenStorage ; class always overwrites the driver
|
|
||||||
;
|
|
||||||
; To use our own pool driver it needs to provide `qubes.storage` entry_point
|
|
||||||
; see also: https://pythonhosted.org/setuptools/setuptools.html#dynamic-discovery-of-services-and-plugins
|
|
||||||
; class name
|
|
||||||
; [pool-b]
|
|
||||||
; driver = foo
|
|
||||||
;
|
|
||||||
; [test-dummy]
|
|
||||||
; driver=dummy
|
|
||||||
|
|
@ -36,8 +36,6 @@ __author__ = 'Invisible Things Lab'
|
|||||||
__license__ = 'GPLv2 or later'
|
__license__ = 'GPLv2 or later'
|
||||||
__version__ = 'R3'
|
__version__ = 'R3'
|
||||||
|
|
||||||
import ast
|
|
||||||
import atexit
|
|
||||||
import collections
|
import collections
|
||||||
import errno
|
import errno
|
||||||
import grp
|
import grp
|
||||||
@ -47,12 +45,9 @@ import os.path
|
|||||||
import sys
|
import sys
|
||||||
import tempfile
|
import tempfile
|
||||||
import time
|
import time
|
||||||
import warnings
|
|
||||||
|
|
||||||
import __builtin__
|
import __builtin__
|
||||||
|
|
||||||
import docutils.core
|
|
||||||
import docutils.io
|
|
||||||
import jinja2
|
import jinja2
|
||||||
import lxml.etree
|
import lxml.etree
|
||||||
import pkg_resources
|
import pkg_resources
|
||||||
@ -1181,7 +1176,6 @@ class Qubes(PropertyHolder):
|
|||||||
default=True,
|
default=True,
|
||||||
doc='check for updates inside qubes')
|
doc='check for updates inside qubes')
|
||||||
|
|
||||||
|
|
||||||
def __init__(self, store=None, load=True, **kwargs):
|
def __init__(self, store=None, load=True, **kwargs):
|
||||||
#: logger instance for logging global messages
|
#: logger instance for logging global messages
|
||||||
self.log = logging.getLogger('app')
|
self.log = logging.getLogger('app')
|
||||||
@ -1194,6 +1188,9 @@ class Qubes(PropertyHolder):
|
|||||||
#: collection of all available labels for VMs
|
#: collection of all available labels for VMs
|
||||||
self.labels = {}
|
self.labels = {}
|
||||||
|
|
||||||
|
#: collection of all pools
|
||||||
|
self.pools = {}
|
||||||
|
|
||||||
#: Connection to VMM
|
#: Connection to VMM
|
||||||
self.vmm = VMMConnection()
|
self.vmm = VMMConnection()
|
||||||
|
|
||||||
@ -1256,11 +1253,19 @@ class Qubes(PropertyHolder):
|
|||||||
|
|
||||||
self.xml = lxml.etree.parse(fh)
|
self.xml = lxml.etree.parse(fh)
|
||||||
|
|
||||||
# stage 1: load labels
|
# stage 1: load labels and pools
|
||||||
for node in self.xml.xpath('./labels/label'):
|
for node in self.xml.xpath('./labels/label'):
|
||||||
label = Label.fromxml(node)
|
label = Label.fromxml(node)
|
||||||
self.labels[label.index] = label
|
self.labels[label.index] = label
|
||||||
|
|
||||||
|
for node in self.xml.xpath('./pools/pool'):
|
||||||
|
name = node.get('name')
|
||||||
|
assert name, "Pool name '%s' is invalid " % name
|
||||||
|
try:
|
||||||
|
self.pools[name] = self._get_pool(**node.attrib)
|
||||||
|
except qubes.exc.QubesException as e:
|
||||||
|
self.log.error(e.message)
|
||||||
|
|
||||||
# stage 2: load VMs
|
# stage 2: load VMs
|
||||||
for node in self.xml.xpath('./domains/domain'):
|
for node in self.xml.xpath('./domains/domain'):
|
||||||
# pylint: disable=no-member
|
# pylint: disable=no-member
|
||||||
@ -1270,7 +1275,7 @@ class Qubes(PropertyHolder):
|
|||||||
vm.init_log()
|
vm.init_log()
|
||||||
self.domains.add(vm)
|
self.domains.add(vm)
|
||||||
|
|
||||||
if not 0 in self.domains:
|
if 0 not in self.domains:
|
||||||
self.domains.add(qubes.vm.adminvm.AdminVM(
|
self.domains.add(qubes.vm.adminvm.AdminVM(
|
||||||
self, None, qid=0, name='dom0'))
|
self, None, qid=0, name='dom0'))
|
||||||
|
|
||||||
@ -1310,11 +1315,17 @@ class Qubes(PropertyHolder):
|
|||||||
fh.close()
|
fh.close()
|
||||||
del fh
|
del fh
|
||||||
|
|
||||||
|
|
||||||
def __xml__(self):
|
def __xml__(self):
|
||||||
element = lxml.etree.Element('qubes')
|
element = lxml.etree.Element('qubes')
|
||||||
|
|
||||||
element.append(self.xml_labels())
|
element.append(self.xml_labels())
|
||||||
|
|
||||||
|
pools_xml = lxml.etree.Element('pools')
|
||||||
|
for pool in self.pools.values():
|
||||||
|
pools_xml.append(pool.__xml__())
|
||||||
|
|
||||||
|
element.append(pools_xml)
|
||||||
|
|
||||||
element.append(self.xml_properties())
|
element.append(self.xml_properties())
|
||||||
|
|
||||||
domains = lxml.etree.Element('domains')
|
domains = lxml.etree.Element('domains')
|
||||||
@ -1395,6 +1406,10 @@ class Qubes(PropertyHolder):
|
|||||||
7: Label(7, '0x75507b', 'purple'),
|
7: Label(7, '0x75507b', 'purple'),
|
||||||
8: Label(8, '0x000000', 'black'),
|
8: Label(8, '0x000000', 'black'),
|
||||||
}
|
}
|
||||||
|
|
||||||
|
for name, config in qubes.config.defaults['pool_configs'].items():
|
||||||
|
self.pools[name] = self._get_pool(**config)
|
||||||
|
|
||||||
self.domains.add(
|
self.domains.add(
|
||||||
qubes.vm.adminvm.AdminVM(self, None, qid=0, name='dom0'))
|
qubes.vm.adminvm.AdminVM(self, None, qid=0, name='dom0'))
|
||||||
self.save()
|
self.save()
|
||||||
@ -1413,7 +1428,6 @@ class Qubes(PropertyHolder):
|
|||||||
labels.append(label.__xml__())
|
labels.append(label.__xml__())
|
||||||
return labels
|
return labels
|
||||||
|
|
||||||
|
|
||||||
def get_vm_class(self, clsname):
|
def get_vm_class(self, clsname):
|
||||||
'''Find the class for a domain.
|
'''Find the class for a domain.
|
||||||
|
|
||||||
@ -1473,6 +1487,52 @@ class Qubes(PropertyHolder):
|
|||||||
|
|
||||||
raise KeyError(label)
|
raise KeyError(label)
|
||||||
|
|
||||||
|
def add_pool(self, **kwargs):
|
||||||
|
""" Add a storage pool to config."""
|
||||||
|
name = kwargs['name']
|
||||||
|
assert name not in self.pools.keys(), \
|
||||||
|
"Pool named %s already exists" % name
|
||||||
|
pool = self._get_pool(**kwargs)
|
||||||
|
pool.setup()
|
||||||
|
self.pools[name] = pool
|
||||||
|
|
||||||
|
def remove_pool(self, name):
|
||||||
|
""" Remove a storage pool from config file. """
|
||||||
|
try:
|
||||||
|
pool = self.pools[name]
|
||||||
|
del self.pools[name]
|
||||||
|
pool.destroy()
|
||||||
|
except KeyError:
|
||||||
|
return
|
||||||
|
|
||||||
|
|
||||||
|
def get_pool(self, name):
|
||||||
|
''' Returns a :py:class:`qubes.storage.Pool` instance '''
|
||||||
|
try:
|
||||||
|
return self.pools[name]
|
||||||
|
except KeyError:
|
||||||
|
raise qubes.exc.QubesException('Unknown storage pool ' + name)
|
||||||
|
|
||||||
|
def _get_pool(self, **kwargs):
|
||||||
|
try:
|
||||||
|
name = kwargs['name']
|
||||||
|
assert name, 'Name needs to be an non empty string'
|
||||||
|
except KeyError:
|
||||||
|
raise qubes.exc.QubesException('No pool name for pool')
|
||||||
|
|
||||||
|
try:
|
||||||
|
driver = kwargs['driver']
|
||||||
|
except KeyError:
|
||||||
|
raise qubes.exc.QubesException('No driver specified for pool ' +
|
||||||
|
name)
|
||||||
|
try:
|
||||||
|
klass = qubes.get_entry_point_one(
|
||||||
|
qubes.storage.STORAGE_ENTRY_POINT, driver)
|
||||||
|
del kwargs['driver']
|
||||||
|
return klass(**kwargs)
|
||||||
|
except KeyError:
|
||||||
|
raise qubes.exc.QubesException('Driver %s for pool %s' %
|
||||||
|
(driver, name))
|
||||||
|
|
||||||
@qubes.events.handler('domain-pre-delete')
|
@qubes.events.handler('domain-pre-delete')
|
||||||
def on_domain_pre_deleted(self, event, vm):
|
def on_domain_pre_deleted(self, event, vm):
|
||||||
|
@ -28,6 +28,8 @@
|
|||||||
# make a real /etc/qubes/master.conf or whatever
|
# make a real /etc/qubes/master.conf or whatever
|
||||||
#
|
#
|
||||||
|
|
||||||
|
import os.path
|
||||||
|
|
||||||
'''Constants which can be configured in one place'''
|
'''Constants which can be configured in one place'''
|
||||||
|
|
||||||
qubes_base_dir = "/var/lib/qubes"
|
qubes_base_dir = "/var/lib/qubes"
|
||||||
@ -83,7 +85,17 @@ defaults = {
|
|||||||
'private_img_size': 2*1024*1024*1024,
|
'private_img_size': 2*1024*1024*1024,
|
||||||
'root_img_size': 10*1024*1024*1024,
|
'root_img_size': 10*1024*1024*1024,
|
||||||
|
|
||||||
'pool_config': {'dir_path': '/var/lib/qubes'},
|
'pool_configs': {
|
||||||
|
'default': {'dir_path': qubes_base_dir,
|
||||||
|
'driver': 'xen',
|
||||||
|
'name': 'default'},
|
||||||
|
'linux-kernel': {
|
||||||
|
'dir_path': os.path.join(qubes_base_dir,
|
||||||
|
system_path['qubes_kernels_base_dir']),
|
||||||
|
'driver': 'linux-kernel',
|
||||||
|
'name': 'linux-kernel'
|
||||||
|
}
|
||||||
|
},
|
||||||
|
|
||||||
# how long (in sec) to wait for VMs to shutdown,
|
# how long (in sec) to wait for VMs to shutdown,
|
||||||
# before killing them (when used qvm-run with --wait option),
|
# before killing them (when used qvm-run with --wait option),
|
||||||
|
@ -6,6 +6,7 @@
|
|||||||
#
|
#
|
||||||
# Copyright (C) 2010-2016 Joanna Rutkowska <joanna@invisiblethingslab.com>
|
# Copyright (C) 2010-2016 Joanna Rutkowska <joanna@invisiblethingslab.com>
|
||||||
# Copyright (C) 2015-2016 Wojtek Porczyk <woju@invisiblethingslab.com>
|
# Copyright (C) 2015-2016 Wojtek Porczyk <woju@invisiblethingslab.com>
|
||||||
|
# Copyright (C) 2016 Bahtiar `kalkin-` Gadimov <bahtiar@gadimov.de>
|
||||||
#
|
#
|
||||||
# This program is free software; you can redistribute it and/or modify
|
# This program is free software; you can redistribute it and/or modify
|
||||||
# it under the terms of the GNU General Public License as published by
|
# it under the terms of the GNU General Public License as published by
|
||||||
@ -26,6 +27,7 @@ import re
|
|||||||
|
|
||||||
import qubes
|
import qubes
|
||||||
|
|
||||||
|
|
||||||
class DeviceCollection(object):
|
class DeviceCollection(object):
|
||||||
'''Bag for devices.
|
'''Bag for devices.
|
||||||
|
|
||||||
@ -121,3 +123,16 @@ class RegexDevice(str):
|
|||||||
class PCIDevice(RegexDevice):
|
class PCIDevice(RegexDevice):
|
||||||
regex = re.compile(
|
regex = re.compile(
|
||||||
r'^(?P<bus>[0-9a-f]+):(?P<device>[0-9a-f]+)\.(?P<function>[0-9a-f]+)$')
|
r'^(?P<bus>[0-9a-f]+):(?P<device>[0-9a-f]+)\.(?P<function>[0-9a-f]+)$')
|
||||||
|
|
||||||
|
|
||||||
|
class BlockDevice(object):
|
||||||
|
def __init__(self, path, name, script=None, rw=True, domain=None,
|
||||||
|
devtype='disk'):
|
||||||
|
assert name, 'Missing device name'
|
||||||
|
assert path, 'Missing device path'
|
||||||
|
self.path = path
|
||||||
|
self.name = name
|
||||||
|
self.rw = rw
|
||||||
|
self.script = script
|
||||||
|
self.domain = domain
|
||||||
|
self.devtype = devtype
|
||||||
|
@ -23,24 +23,22 @@
|
|||||||
# with this program; if not, write to the Free Software Foundation, Inc.,
|
# with this program; if not, write to the Free Software Foundation, Inc.,
|
||||||
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
||||||
#
|
#
|
||||||
|
|
||||||
""" Qubes storage system"""
|
""" Qubes storage system"""
|
||||||
|
|
||||||
from __future__ import absolute_import
|
from __future__ import absolute_import
|
||||||
|
|
||||||
import ConfigParser
|
|
||||||
import os
|
import os
|
||||||
import os.path
|
import os.path
|
||||||
import shutil
|
import shutil
|
||||||
import subprocess
|
|
||||||
|
|
||||||
import pkg_resources
|
import pkg_resources
|
||||||
import qubes
|
import qubes
|
||||||
import qubes.exc
|
import qubes.exc
|
||||||
import qubes.utils
|
import qubes.utils
|
||||||
|
from qubes.devices import BlockDevice
|
||||||
|
|
||||||
|
import lxml.etree
|
||||||
|
|
||||||
BLKSIZE = 512
|
|
||||||
CONFIG_FILE = '/etc/qubes/storage.conf'
|
|
||||||
STORAGE_ENTRY_POINT = 'qubes.storage'
|
STORAGE_ENTRY_POINT = 'qubes.storage'
|
||||||
|
|
||||||
|
|
||||||
@ -48,6 +46,49 @@ class StoragePoolException(qubes.exc.QubesException):
|
|||||||
pass
|
pass
|
||||||
|
|
||||||
|
|
||||||
|
class Volume(object):
|
||||||
|
''' Encapsulates all data about a volume for serialization to qubes.xml and
|
||||||
|
libvirt config.
|
||||||
|
'''
|
||||||
|
|
||||||
|
devtype = 'disk'
|
||||||
|
domain = None
|
||||||
|
path = None
|
||||||
|
rw = True
|
||||||
|
script = None
|
||||||
|
usage = 0
|
||||||
|
|
||||||
|
def __init__(self, name, pool, volume_type, vid=None, size=0, **kwargs):
|
||||||
|
super(Volume, self).__init__(**kwargs)
|
||||||
|
self.name = str(name)
|
||||||
|
self.pool = str(pool)
|
||||||
|
self.vid = vid
|
||||||
|
self.size = size
|
||||||
|
self.volume_type = volume_type
|
||||||
|
|
||||||
|
def __xml__(self):
|
||||||
|
return lxml.etree.Element('volume', **self.config)
|
||||||
|
|
||||||
|
@property
|
||||||
|
def config(self):
|
||||||
|
''' return config data for serialization to qubes.xml '''
|
||||||
|
return {'name': self.name,
|
||||||
|
'pool': self.pool,
|
||||||
|
'volume_type': self.volume_type}
|
||||||
|
|
||||||
|
def __repr__(self):
|
||||||
|
return '{}(name={!s}, pool={!r}, vid={!r}, volume_type={!r})'.format(
|
||||||
|
self.__class__.__name__, self.name, self.pool, self.vid,
|
||||||
|
self.volume_type)
|
||||||
|
|
||||||
|
def block_device(self):
|
||||||
|
''' Return :py:class:`qubes.devices.BlockDevice` for serialization in
|
||||||
|
the libvirt XML template as <disk>.
|
||||||
|
'''
|
||||||
|
return BlockDevice(self.path, self.name, self.script, self.rw,
|
||||||
|
self.domain, self.devtype)
|
||||||
|
|
||||||
|
|
||||||
class Storage(object):
|
class Storage(object):
|
||||||
''' Class for handling VM virtual disks.
|
''' Class for handling VM virtual disks.
|
||||||
|
|
||||||
@ -55,77 +96,20 @@ class Storage(object):
|
|||||||
in mind.
|
in mind.
|
||||||
'''
|
'''
|
||||||
|
|
||||||
root_img = None
|
def __init__(self, vm):
|
||||||
private_img = None
|
|
||||||
volatile_img = None
|
|
||||||
|
|
||||||
modules_dev = None
|
|
||||||
|
|
||||||
def __init__(self, vm, private_img_size=None, root_img_size=None):
|
|
||||||
|
|
||||||
#: Domain for which we manage storage
|
#: Domain for which we manage storage
|
||||||
self.vm = vm
|
self.vm = vm
|
||||||
|
self.log = self.vm.log
|
||||||
#: Size of the private image
|
|
||||||
self.private_img_size = private_img_size \
|
|
||||||
if private_img_size is not None \
|
|
||||||
else qubes.config.defaults['private_img_size']
|
|
||||||
|
|
||||||
#: Size of the root image
|
|
||||||
self.root_img_size = root_img_size \
|
|
||||||
if root_img_size is not None \
|
|
||||||
else qubes.config.defaults['root_img_size']
|
|
||||||
|
|
||||||
#: Additional drive (currently used only by HVM)
|
#: Additional drive (currently used only by HVM)
|
||||||
self.drive = None
|
self.drive = None
|
||||||
|
self.pools = {}
|
||||||
def get_config_params(self):
|
if hasattr(vm, 'volume_config'):
|
||||||
args = {}
|
for name, conf in self.vm.volume_config.items():
|
||||||
args['rootdev'] = self.root_dev_config()
|
assert 'pool' in conf, "Pool missing in volume_config" % str(
|
||||||
args['privatedev'] = self.private_dev_config()
|
conf)
|
||||||
args['volatiledev'] = self.volatile_dev_config()
|
pool = self.vm.app.get_pool(conf['pool'])
|
||||||
args['otherdevs'] = self.other_dev_config()
|
self.vm.volumes[name] = pool.init_volume(self.vm, conf)
|
||||||
|
self.pools[name] = pool
|
||||||
args['kerneldir'] = self.kernels_dir
|
|
||||||
|
|
||||||
return args
|
|
||||||
|
|
||||||
def root_dev_config(self):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
def private_dev_config(self):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
def volatile_dev_config(self):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
def other_dev_config(self):
|
|
||||||
if self.modules_img is not None:
|
|
||||||
return self.format_disk_dev(self.modules_img, self.modules_dev,
|
|
||||||
rw=self.modules_img_rw)
|
|
||||||
elif self.drive is not None:
|
|
||||||
(drive_type, drive_domain, drive_path) = self.drive.split(":")
|
|
||||||
if drive_type == 'hd':
|
|
||||||
drive_type = 'disk'
|
|
||||||
|
|
||||||
rw = (drive_type == 'disk')
|
|
||||||
|
|
||||||
if drive_domain.lower() == "dom0":
|
|
||||||
drive_domain = None
|
|
||||||
|
|
||||||
return self.format_disk_dev(drive_path,
|
|
||||||
self.modules_dev,
|
|
||||||
rw=rw,
|
|
||||||
devtype=drive_type,
|
|
||||||
domain=drive_domain)
|
|
||||||
|
|
||||||
else:
|
|
||||||
return ''
|
|
||||||
|
|
||||||
def format_disk_dev(self, path, vdev, script=None, rw=True, devtype='disk',
|
|
||||||
domain=None):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
|
|
||||||
@property
|
@property
|
||||||
def kernels_dir(self):
|
def kernels_dir(self):
|
||||||
@ -134,367 +118,180 @@ class Storage(object):
|
|||||||
If :py:attr:`self.vm.kernel` is :py:obj:`None`, the this points inside
|
If :py:attr:`self.vm.kernel` is :py:obj:`None`, the this points inside
|
||||||
:py:attr:`self.vm.dir_path`
|
:py:attr:`self.vm.dir_path`
|
||||||
'''
|
'''
|
||||||
return os.path.join(qubes.config.system_path['qubes_base_dir'],
|
assert 'kernel' in self.vm.volumes, "VM has no kernel pool"
|
||||||
qubes.config.system_path['qubes_kernels_base_dir'], self.vm.kernel)\
|
return self.vm.volumes['kernel'].kernels_dir
|
||||||
if self.vm.kernel is not None \
|
|
||||||
else os.path.join(self.vm.dir_path,
|
|
||||||
qubes.config.vm_files['kernels_subdir'])
|
|
||||||
|
|
||||||
|
|
||||||
@property
|
|
||||||
def modules_img(self):
|
|
||||||
'''Path to image with modules.
|
|
||||||
|
|
||||||
Depending on domain, this may be global or inside domain's dir.
|
|
||||||
'''
|
|
||||||
|
|
||||||
modules_path = os.path.join(self.kernels_dir, 'modules.img')
|
|
||||||
|
|
||||||
if os.path.exists(modules_path):
|
|
||||||
return modules_path
|
|
||||||
else:
|
|
||||||
return None
|
|
||||||
|
|
||||||
|
|
||||||
@property
|
|
||||||
def modules_img_rw(self):
|
|
||||||
''':py:obj:`True` if module image should be mounted RW, :py:obj:`False`
|
|
||||||
otherwise.'''
|
|
||||||
return self.vm.kernel is None
|
|
||||||
|
|
||||||
|
|
||||||
def abspath(self, path, rel=None):
|
|
||||||
'''Make absolute path.
|
|
||||||
|
|
||||||
If given path is relative, it is interpreted as relative to
|
|
||||||
:py:attr:`self.vm.dir_path` or given *rel*.
|
|
||||||
'''
|
|
||||||
return path if os.path.isabs(path) \
|
|
||||||
else os.path.join(rel or self.vm.dir_path, path)
|
|
||||||
|
|
||||||
|
|
||||||
@staticmethod
|
|
||||||
def _copy_file(source, destination):
|
|
||||||
'''Effective file copy, preserving sparse files etc.
|
|
||||||
'''
|
|
||||||
# TODO: Windows support
|
|
||||||
|
|
||||||
# We prefer to use Linux's cp, because it nicely handles sparse files
|
|
||||||
try:
|
|
||||||
subprocess.check_call(['cp', '--reflink=auto', source, destination])
|
|
||||||
except subprocess.CalledProcessError:
|
|
||||||
raise IOError('Error while copying {!r} to {!r}'.format(
|
|
||||||
source, destination))
|
|
||||||
|
|
||||||
def get_disk_utilization(self):
|
def get_disk_utilization(self):
|
||||||
return get_disk_usage(self.vm.dir_path)
|
''' Returns summed up disk utilization for all domain volumes '''
|
||||||
|
result = 0
|
||||||
|
for volume in self.vm.volumes.values():
|
||||||
|
result += volume.usage
|
||||||
|
return result
|
||||||
|
|
||||||
|
# TODO Remove this wrapper
|
||||||
def get_disk_utilization_private_img(self):
|
def get_disk_utilization_private_img(self):
|
||||||
# pylint: disable=invalid-name
|
# pylint: disable=invalid-name,missing-docstring
|
||||||
return get_disk_usage(self.private_img)
|
return self.vm.volume['private'].usage
|
||||||
|
|
||||||
|
# TODO Remove this wrapper
|
||||||
def get_private_img_sz(self):
|
def get_private_img_sz(self):
|
||||||
if not os.path.exists(self.private_img):
|
# :pylint: disable=missing-docstring
|
||||||
return 0
|
return self.vm.volume['private'].size
|
||||||
|
|
||||||
return os.path.getsize(self.private_img)
|
def resize(self, volume, size):
|
||||||
|
''' Resize volume '''
|
||||||
def resize_private_img(self, size):
|
self.get_pool(volume).resize(volume, size)
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
def create_on_disk_private_img(self, source_template=None):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
def create_on_disk_root_img(self, source_template=None):
|
|
||||||
raise NotImplementedError()
|
|
||||||
|
|
||||||
|
# TODO rename it to create()
|
||||||
def create_on_disk(self, source_template=None):
|
def create_on_disk(self, source_template=None):
|
||||||
|
# :pylint: disable=missing-docstring
|
||||||
if source_template is None and hasattr(self.vm, 'template'):
|
if source_template is None and hasattr(self.vm, 'template'):
|
||||||
source_template = self.vm.template
|
source_template = self.vm.template
|
||||||
|
|
||||||
old_umask = os.umask(002)
|
old_umask = os.umask(002)
|
||||||
|
|
||||||
self.vm.log.info('Creating directory: {0}'.format(self.vm.dir_path))
|
self.log.info('Creating directory: {0}'.format(self.vm.dir_path))
|
||||||
os.mkdir(self.vm.dir_path)
|
os.makedirs(self.vm.dir_path)
|
||||||
self.create_on_disk_private_img(source_template)
|
for name, volume in self.vm.volumes.items():
|
||||||
self.create_on_disk_root_img(source_template)
|
source_volume = None
|
||||||
self.reset_volatile_storage()
|
if source_template and hasattr(source_template, 'volumes'):
|
||||||
|
source_volume = source_template.volumes[name]
|
||||||
|
self.get_pool(volume).create(volume, source_volume=source_volume)
|
||||||
|
|
||||||
os.umask(old_umask)
|
os.umask(old_umask)
|
||||||
|
|
||||||
def clone_disk_files(self, src_vm):
|
def clone(self, src_vm):
|
||||||
self.vm.log.info('Creating directory: {0}'.format(self.vm.dir_path))
|
self.vm.log.info('Creating directory: {0}'.format(self.vm.dir_path))
|
||||||
os.mkdir(self.vm.dir_path)
|
if not os.path.exists(self.vm.dir_path):
|
||||||
|
self.log.info('Creating directory: {0}'.format(self.vm.dir_path))
|
||||||
if hasattr(src_vm, 'private_img'):
|
os.makedirs(self.vm.dir_path)
|
||||||
self.vm.log.info('Copying the private image: {} -> {}'.format(
|
for name, target in self.vm.volumes.items():
|
||||||
src_vm.private_img, self.vm.private_img))
|
pool = self.get_pool(target)
|
||||||
self._copy_file(src_vm.private_img, self.vm.private_img)
|
source = src_vm.volumes[name]
|
||||||
|
volume = pool.clone(source, target)
|
||||||
if src_vm.updateable and hasattr(src_vm, 'root_img'):
|
assert volume, "%s.clone() returned '%s'" % (pool.__class__,
|
||||||
self.vm.log.info('Copying the root image: {} -> {}'.format(
|
volume)
|
||||||
src_vm.root_img, self.root_img))
|
self.vm.volumes[name] = volume
|
||||||
self._copy_file(src_vm.root_img, self.root_img)
|
|
||||||
|
|
||||||
# TODO: modules?
|
|
||||||
# XXX which modules? -woju
|
|
||||||
|
|
||||||
|
|
||||||
@staticmethod
|
|
||||||
def rename(newpath, oldpath):
|
|
||||||
'''Move storage directory, most likely during domain's rename.
|
|
||||||
|
|
||||||
.. note::
|
|
||||||
The arguments are in different order than in :program:`cp` utility.
|
|
||||||
|
|
||||||
.. versionchange:: 4.0
|
|
||||||
This is now dummy method that just passes everything to
|
|
||||||
:py:func:`os.rename`.
|
|
||||||
|
|
||||||
:param str newpath: New path
|
|
||||||
:param str oldpath: Old path
|
|
||||||
'''
|
|
||||||
|
|
||||||
os.rename(oldpath, newpath)
|
|
||||||
|
|
||||||
|
def rename(self, old_name, new_name):
|
||||||
|
''' Notify the pools that the domain was renamed '''
|
||||||
|
volumes = self.vm.volumes
|
||||||
|
for name, volume in volumes.items():
|
||||||
|
pool = self.get_pool(volume)
|
||||||
|
volumes[name] = pool.rename(volume, old_name, new_name)
|
||||||
|
|
||||||
def verify_files(self):
|
def verify_files(self):
|
||||||
|
'''Verify that the storage is sane.
|
||||||
|
|
||||||
|
On success, returns normally. On failure, raises exception.
|
||||||
|
'''
|
||||||
if not os.path.exists(self.vm.dir_path):
|
if not os.path.exists(self.vm.dir_path):
|
||||||
raise qubes.exc.QubesVMError(self.vm,
|
raise qubes.exc.QubesVMError(
|
||||||
|
self.vm,
|
||||||
'VM directory does not exist: {}'.format(self.vm.dir_path))
|
'VM directory does not exist: {}'.format(self.vm.dir_path))
|
||||||
|
|
||||||
if hasattr(self.vm, 'root_img') and not os.path.exists(self.root_img):
|
def remove(self):
|
||||||
raise qubes.exc.QubesVMError(self.vm,
|
for name, volume in self.vm.volumes.items():
|
||||||
'VM root image file does not exist: {}'.format(self.root_img))
|
self.log.info('Removing volume %s: %s' % (name, volume.vid))
|
||||||
|
self.get_pool(volume).remove(volume)
|
||||||
if hasattr(self.vm, 'private_img') \
|
|
||||||
and not os.path.exists(self.private_img):
|
|
||||||
raise qubes.exc.QubesVMError(self.vm,
|
|
||||||
'VM private image file does not exist: {}'.format(
|
|
||||||
self.private_img))
|
|
||||||
|
|
||||||
if self.modules_img is not None \
|
|
||||||
and not os.path.exists(self.modules_img):
|
|
||||||
raise qubes.exc.QubesVMError(self.vm,
|
|
||||||
'VM kernel modules image does not exists: {}'.format(
|
|
||||||
self.modules_img))
|
|
||||||
|
|
||||||
|
|
||||||
def remove_from_disk(self):
|
|
||||||
shutil.rmtree(self.vm.dir_path)
|
shutil.rmtree(self.vm.dir_path)
|
||||||
|
|
||||||
|
def start(self):
|
||||||
|
''' Execute the start method on each pool '''
|
||||||
|
for volume in self.vm.volumes.values():
|
||||||
|
self.get_pool(volume).start(volume)
|
||||||
|
|
||||||
def reset_volatile_storage(self):
|
def stop(self):
|
||||||
# Re-create only for template based VMs
|
''' Execute the start method on each pool '''
|
||||||
try:
|
for volume in self.vm.volumes.values():
|
||||||
if self.vm.template is not None and self.volatile_img:
|
self.get_pool(volume).stop(volume)
|
||||||
if os.path.exists(self.volatile_img):
|
|
||||||
os.remove(self.volatile_img)
|
|
||||||
except AttributeError: # self.vm.template
|
|
||||||
pass
|
|
||||||
|
|
||||||
# For StandaloneVM create it only if not already exists
|
def get_pool(self, volume):
|
||||||
# (eg after backup-restore)
|
''' Helper function '''
|
||||||
if hasattr(self, 'volatile_img') \
|
assert isinstance(volume, Volume), "You need to pass a Volume"
|
||||||
and not os.path.exists(self.volatile_img):
|
return self.pools[volume.name]
|
||||||
self.vm.log.info(
|
|
||||||
'Creating volatile image: {0}'.format(self.volatile_img))
|
|
||||||
subprocess.check_call(
|
|
||||||
[qubes.config.system_path["prepare_volatile_img_cmd"],
|
|
||||||
self.volatile_img,
|
|
||||||
str(self.root_img_size / 1024 / 1024)])
|
|
||||||
|
|
||||||
|
def commit_template_changes(self):
|
||||||
|
for volume in self.vm.volumes.values():
|
||||||
|
if volume.volume_type == 'origin':
|
||||||
|
self.get_pool(volume).commit_template_changes(volume)
|
||||||
|
|
||||||
def prepare_for_vm_startup(self):
|
|
||||||
self.reset_volatile_storage()
|
|
||||||
|
|
||||||
if hasattr(self.vm, 'private_img') \
|
|
||||||
and not os.path.exists(self.private_img):
|
|
||||||
self.vm.log.info('Creating empty VM private image file: {0}'.format(
|
|
||||||
self.private_img))
|
|
||||||
self.create_on_disk_private_img()
|
|
||||||
|
|
||||||
|
|
||||||
def get_disk_usage_one(st):
|
|
||||||
'''Extract disk usage of one inode from its stat_result struct.
|
|
||||||
|
|
||||||
If known, get real disk usage, as written to device by filesystem, not
|
|
||||||
logical file size. Those values may be different for sparse files.
|
|
||||||
|
|
||||||
:param os.stat_result st: stat result
|
|
||||||
:returns: disk usage
|
|
||||||
'''
|
|
||||||
try:
|
|
||||||
return st.st_blocks * BLKSIZE
|
|
||||||
except AttributeError:
|
|
||||||
return st.st_size
|
|
||||||
|
|
||||||
|
|
||||||
def get_disk_usage(path):
|
|
||||||
'''Get real disk usage of given path (file or directory).
|
|
||||||
|
|
||||||
When *path* points to directory, then it is evaluated recursively.
|
|
||||||
|
|
||||||
This function tries estiate real disk usage. See documentation of
|
|
||||||
:py:func:`get_disk_usage_one`.
|
|
||||||
|
|
||||||
:param str path: path to evaluate
|
|
||||||
:returns: disk usage
|
|
||||||
'''
|
|
||||||
try:
|
|
||||||
st = os.lstat(path)
|
|
||||||
except OSError:
|
|
||||||
return 0
|
|
||||||
|
|
||||||
ret = get_disk_usage_one(st)
|
|
||||||
|
|
||||||
# if path is not a directory, this is skipped
|
|
||||||
for dirpath, dirnames, filenames in os.walk(path):
|
|
||||||
for name in dirnames + filenames:
|
|
||||||
ret += get_disk_usage_one(os.lstat(os.path.join(dirpath, name)))
|
|
||||||
|
|
||||||
return ret
|
|
||||||
|
|
||||||
|
|
||||||
def get_pool(name, vm):
|
|
||||||
""" Instantiates the storage for the specified vm """
|
|
||||||
config = _get_storage_config_parser()
|
|
||||||
|
|
||||||
klass = _get_pool_klass(name, config)
|
|
||||||
|
|
||||||
keys = [k for k in config.options(name) if k != 'driver' and k != 'class']
|
|
||||||
values = [config.get(name, o) for o in keys]
|
|
||||||
config_kwargs = dict(zip(keys, values))
|
|
||||||
|
|
||||||
if name == 'default':
|
|
||||||
kwargs = qubes.config.defaults['pool_config'].copy()
|
|
||||||
kwargs.update(keys)
|
|
||||||
else:
|
|
||||||
kwargs = config_kwargs
|
|
||||||
|
|
||||||
return klass(vm, **kwargs)
|
|
||||||
|
|
||||||
|
|
||||||
def pool_exists(name):
|
|
||||||
""" Check if the specified pool exists """
|
|
||||||
try:
|
|
||||||
_get_pool_klass(name)
|
|
||||||
return True
|
|
||||||
except StoragePoolException:
|
|
||||||
return False
|
|
||||||
|
|
||||||
def add_pool(name, **kwargs):
|
|
||||||
""" Add a storage pool to config."""
|
|
||||||
config = _get_storage_config_parser()
|
|
||||||
config.add_section(name)
|
|
||||||
for key, value in kwargs.iteritems():
|
|
||||||
config.set(name, key, value)
|
|
||||||
_write_config(config)
|
|
||||||
|
|
||||||
def remove_pool(name):
|
|
||||||
""" Remove a storage pool from config file. """
|
|
||||||
config = _get_storage_config_parser()
|
|
||||||
config.remove_section(name)
|
|
||||||
_write_config(config)
|
|
||||||
|
|
||||||
def _write_config(config):
|
|
||||||
with open(CONFIG_FILE, 'w') as configfile:
|
|
||||||
config.write(configfile)
|
|
||||||
|
|
||||||
def _get_storage_config_parser():
|
|
||||||
""" Instantiates a `ConfigParaser` for specified storage config file.
|
|
||||||
|
|
||||||
Returns:
|
|
||||||
RawConfigParser
|
|
||||||
"""
|
|
||||||
config = ConfigParser.RawConfigParser()
|
|
||||||
config.read(CONFIG_FILE)
|
|
||||||
return config
|
|
||||||
|
|
||||||
|
|
||||||
def _get_pool_klass(name, config=None):
|
|
||||||
""" Returns the storage klass for the specified pool.
|
|
||||||
|
|
||||||
Args:
|
|
||||||
name: The pool name.
|
|
||||||
config: If ``config`` is not specified
|
|
||||||
`_get_storage_config_parser()` is called.
|
|
||||||
|
|
||||||
Returns:
|
|
||||||
type: A class inheriting from `QubesVmStorage`
|
|
||||||
"""
|
|
||||||
if config is None:
|
|
||||||
config = _get_storage_config_parser()
|
|
||||||
|
|
||||||
if not config.has_section(name):
|
|
||||||
raise StoragePoolException('Uknown storage pool ' + name)
|
|
||||||
elif not config.has_option(name, 'driver'):
|
|
||||||
raise StoragePoolException('No driver specified for pool ' + name)
|
|
||||||
|
|
||||||
|
|
||||||
driver = config.get(name, 'driver')
|
|
||||||
try:
|
|
||||||
return qubes.get_entry_point_one(STORAGE_ENTRY_POINT, driver)
|
|
||||||
except KeyError:
|
|
||||||
raise StoragePoolException('Driver %s for pool %s' % (driver, name))
|
|
||||||
|
|
||||||
class Pool(object):
|
class Pool(object):
|
||||||
def __init__(self, vm, dir_path):
|
''' A Pool is used to manage different kind of volumes (File
|
||||||
assert vm is not None
|
based/LVM/Btrfs/...).
|
||||||
assert dir_path is not None
|
|
||||||
|
|
||||||
self.vm = vm
|
3rd Parties providing own storage implementations will need to extend
|
||||||
self.dir_path = dir_path
|
this class.
|
||||||
|
'''
|
||||||
|
private_img_size = qubes.config.defaults['private_img_size']
|
||||||
|
root_img_size = qubes.config.defaults['root_img_size']
|
||||||
|
|
||||||
self.create_dir_if_not_exists(self.dir_path)
|
def __init__(self, name, **kwargs):
|
||||||
|
super(Pool, self).__init__(**kwargs)
|
||||||
|
self.name = name
|
||||||
|
kwargs['name'] = self.name
|
||||||
|
|
||||||
self.vmdir = self.vmdir_path(vm, self.dir_path)
|
def __xml__(self):
|
||||||
|
return lxml.etree.Element('pool', **self.config)
|
||||||
|
|
||||||
appvms_path = os.path.join(self.dir_path, 'appvms')
|
def create(self, volume, source_volume):
|
||||||
self.create_dir_if_not_exists(appvms_path)
|
''' Create the given volume on disk or copy from provided
|
||||||
|
`source_volume`.
|
||||||
|
'''
|
||||||
|
raise NotImplementedError("Pool %s has create() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
servicevms_path = os.path.join(self.dir_path, 'servicevms')
|
def commit_template_changes(self, volume):
|
||||||
self.create_dir_if_not_exists(servicevms_path)
|
''' Update origin device '''
|
||||||
|
raise NotImplementedError(
|
||||||
|
"Pool %s has commit_template_changes() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
vm_templates_path = os.path.join(self.dir_path, 'vm-templates')
|
@property
|
||||||
self.create_dir_if_not_exists(vm_templates_path)
|
def config(self):
|
||||||
|
''' Returns the pool config to be written to qubes.xml '''
|
||||||
|
raise NotImplementedError("Pool %s has config() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
# XXX there is also a class attribute on the domain classes which does
|
def clone(self, source, target):
|
||||||
# exactly that -- which one should prevail?
|
''' Clone volume '''
|
||||||
def vmdir_path(self, vm, pool_dir):
|
raise NotImplementedError("Pool %s has clone() not implemented" %
|
||||||
""" Returns the path to vmdir depending on the type of the VM.
|
self.name)
|
||||||
|
|
||||||
The default QubesOS file storage saves the vm images in three
|
def destroy(self):
|
||||||
different directories depending on the ``QubesVM`` type:
|
raise NotImplementedError("Pool %s has destroy() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
* ``appvms`` for ``QubesAppVm`` or ``QubesHvm``
|
def remove(self, volume):
|
||||||
* ``vm-templates`` for ``QubesTemplateVm`` or ``QubesTemplateHvm``
|
''' Remove volume'''
|
||||||
|
raise NotImplementedError("Pool %s has remove() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
Args:
|
def rename(self, volume, old_name, new_name):
|
||||||
vm: a QubesVM
|
''' Called when the domain changes its name '''
|
||||||
pool_dir: the root directory of the pool
|
raise NotImplementedError("Pool %s has rename() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
Returns:
|
def start(self, volume):
|
||||||
string (str) absolute path to the directory where the vm files
|
''' Do what ever is needed on start '''
|
||||||
are stored
|
raise NotImplementedError("Pool %s has start() not implemented" %
|
||||||
"""
|
self.name)
|
||||||
if vm.is_template():
|
|
||||||
subdir = 'vm-templates'
|
|
||||||
elif vm.is_disposablevm():
|
|
||||||
subdir = 'appvms'
|
|
||||||
return os.path.join(pool_dir, subdir, vm.template.name + '-dvm')
|
|
||||||
else:
|
|
||||||
subdir = 'appvms'
|
|
||||||
|
|
||||||
return os.path.join(pool_dir, subdir, vm.name)
|
def setup(self):
|
||||||
|
raise NotImplementedError("Pool %s has setup() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
def create_dir_if_not_exists(self, path):
|
def stop(self, volume):
|
||||||
""" Check if a directory exists in if not create it.
|
''' Do what ever is needed on stop'''
|
||||||
|
raise NotImplementedError("Pool %s has stop() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
This method does not create any parent directories.
|
def init_volume(self, volume_config):
|
||||||
"""
|
''' Initialize a :py:class:`qubes.storage.Volume` from `volume_config`.
|
||||||
if not os.path.exists(path):
|
'''
|
||||||
os.mkdir(path)
|
raise NotImplementedError("Pool %s has init_volume() not implemented" %
|
||||||
|
self.name)
|
||||||
|
|
||||||
|
|
||||||
def pool_drivers():
|
def pool_drivers():
|
||||||
|
109
qubes/storage/kernels.py
Normal file
109
qubes/storage/kernels.py
Normal file
@ -0,0 +1,109 @@
|
|||||||
|
#!/usr/bin/python2
|
||||||
|
# -*- encoding: utf8 -*-
|
||||||
|
#
|
||||||
|
# The Qubes OS Project, http://www.qubes-os.org
|
||||||
|
#
|
||||||
|
# Copyright (C) 2010-2015 Joanna Rutkowska <joanna@invisiblethingslab.com>
|
||||||
|
# Copyright (C) 2015 Wojtek Porczyk <woju@invisiblethingslab.com>
|
||||||
|
# Copyright (C) 2016 Bahtiar `kalkin-` Gadimov <bahtiar@gadimov.de>
|
||||||
|
#
|
||||||
|
# This program is free software; you can redistribute it and/or modify
|
||||||
|
# it under the terms of the GNU General Public License as published by
|
||||||
|
# the Free Software Foundation; either version 2 of the License, or
|
||||||
|
# (at your option) any later version.
|
||||||
|
#
|
||||||
|
# This program is distributed in the hope that it will be useful,
|
||||||
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||||
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||||
|
# GNU General Public License for more details.
|
||||||
|
#
|
||||||
|
# You should have received a copy of the GNU General Public License along
|
||||||
|
# with this program; if not, write to the Free Software Foundation, Inc.,
|
||||||
|
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
||||||
|
#
|
||||||
|
import os
|
||||||
|
|
||||||
|
from qubes.storage import Pool, StoragePoolException, Volume
|
||||||
|
|
||||||
|
|
||||||
|
class LinuxModules(Volume):
|
||||||
|
rw = False
|
||||||
|
|
||||||
|
def __init__(self, target_dir, kernel_version, **kwargs):
|
||||||
|
super(LinuxModules, self).__init__(**kwargs)
|
||||||
|
self.kernels_dir = os.path.join(target_dir, kernel_version)
|
||||||
|
self.path = os.path.join(self.kernels_dir, 'modules.img')
|
||||||
|
self.vid = self.path
|
||||||
|
self.vmlinuz = os.path.join(self.kernels_dir, 'vmlinuz')
|
||||||
|
self.initramfs = os.path.join(self.kernels_dir, 'initramfs')
|
||||||
|
|
||||||
|
|
||||||
|
class LinuxKernel(Pool):
|
||||||
|
driver = 'linux-kernel'
|
||||||
|
|
||||||
|
def __init__(self, name=None, dir_path=None):
|
||||||
|
assert dir_path, 'Missing dir_path'
|
||||||
|
super(LinuxKernel, self).__init__(name=name)
|
||||||
|
self.dir_path = dir_path
|
||||||
|
|
||||||
|
def init_volume(self, vm, volume_config):
|
||||||
|
assert 'volume_type' in volume_config, "Volume type missing " \
|
||||||
|
+ str(volume_config)
|
||||||
|
volume_type = volume_config['volume_type']
|
||||||
|
if volume_type != 'read-only':
|
||||||
|
raise StoragePoolException("Unknown volume type " + volume_type)
|
||||||
|
|
||||||
|
volume = LinuxModules(self.dir_path, vm.kernel, **volume_config)
|
||||||
|
|
||||||
|
_check_path(volume.path)
|
||||||
|
_check_path(volume.vmlinuz)
|
||||||
|
_check_path(volume.initramfs)
|
||||||
|
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def clone(self, source, target):
|
||||||
|
return target
|
||||||
|
|
||||||
|
def create(self, volume, source_volume):
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def commit_template_changes(self, volume):
|
||||||
|
return volume
|
||||||
|
|
||||||
|
@property
|
||||||
|
def config(self):
|
||||||
|
return {
|
||||||
|
'name': self.name,
|
||||||
|
'dir_path': self.dir_path,
|
||||||
|
'driver': LinuxKernel.driver,
|
||||||
|
}
|
||||||
|
|
||||||
|
def destroy(self):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def remove(self, volume):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def rename(self, volume, old_name, new_name):
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def setup(self):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def start(self, volume):
|
||||||
|
path = volume.path
|
||||||
|
if not os.path.exists(path):
|
||||||
|
raise StoragePoolException('Missing kernel modules: %s' % path)
|
||||||
|
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def stop(self, volume):
|
||||||
|
pass
|
||||||
|
|
||||||
|
|
||||||
|
def _check_path(path):
|
||||||
|
''' Raise an :py:class:`qubes.storage.StoragePoolException` if ``path`` does
|
||||||
|
not exist.
|
||||||
|
'''
|
||||||
|
if not os.path.exists(path):
|
||||||
|
raise StoragePoolException('Missing file: %s' % path)
|
@ -31,173 +31,110 @@ import os.path
|
|||||||
import re
|
import re
|
||||||
import subprocess
|
import subprocess
|
||||||
|
|
||||||
import lxml.etree
|
from qubes.storage import Pool, StoragePoolException, Volume
|
||||||
|
|
||||||
import qubes
|
BLKSIZE = 512
|
||||||
import qubes.config
|
|
||||||
import qubes.storage
|
|
||||||
import qubes.vm.templatevm
|
|
||||||
|
|
||||||
|
|
||||||
class XenStorage(qubes.storage.Storage):
|
class XenPool(Pool):
|
||||||
'''Class for VM storage of Xen VMs.
|
''' File based 'original' disk implementation '''
|
||||||
|
driver = 'xen'
|
||||||
|
|
||||||
|
def __init__(self, name=None, dir_path=None):
|
||||||
|
super(XenPool, self).__init__(name=name)
|
||||||
|
assert dir_path, "No pool dir_path specified"
|
||||||
|
self.dir_path = os.path.normpath(dir_path)
|
||||||
|
|
||||||
|
def clone(self, source, target):
|
||||||
|
''' Clones the volume if the `source.pool` if the source is a
|
||||||
|
:py:class:`XenVolume`.
|
||||||
'''
|
'''
|
||||||
|
if issubclass(XenVolume, source.__class__):
|
||||||
|
raise StoragePoolException('Volumes %s and %s use different pools'
|
||||||
|
% (source.__class__, target.__class__))
|
||||||
|
|
||||||
root_dev = 'xvda'
|
if source.volume_type not in ['origin', 'read-write']:
|
||||||
private_dev = 'xvdb'
|
return target
|
||||||
volatile_dev = 'xvdc'
|
|
||||||
modules_dev = 'xvdd'
|
|
||||||
|
|
||||||
def __init__(self, vm, vmdir, **kwargs):
|
copy_file(source.vid, target.vid)
|
||||||
""" Instantiate the storage.
|
return target
|
||||||
|
|
||||||
Args:
|
def create(self, volume, source_volume=None):
|
||||||
vm: a QubesVM
|
_type = volume.volume_type
|
||||||
vmdir: the root directory of the pool
|
size = volume.size
|
||||||
"""
|
if _type == 'origin':
|
||||||
assert vm is not None
|
create_sparse_file(volume.path_origin, size)
|
||||||
assert vmdir is not None
|
create_sparse_file(volume.path_cow, size)
|
||||||
|
elif _type in ['read-write'] and source_volume:
|
||||||
super(XenStorage, self).__init__(vm, **kwargs)
|
copy_file(source_volume.path, volume.path)
|
||||||
|
elif _type in ['read-write', 'volatile']:
|
||||||
self.vmdir = vmdir
|
create_sparse_file(volume.path, size)
|
||||||
|
|
||||||
|
return volume
|
||||||
|
|
||||||
@property
|
@property
|
||||||
def private_img(self):
|
def config(self):
|
||||||
'''Path to the private image'''
|
return {
|
||||||
return self.abspath(qubes.config.vm_files['private_img'])
|
'name': self.name,
|
||||||
|
'dir_path': self.dir_path,
|
||||||
|
'driver': XenPool.driver,
|
||||||
|
}
|
||||||
|
|
||||||
|
def resize(self, volume, size):
|
||||||
|
''' Expands volume, throws
|
||||||
|
:py:class:`qubst.storage.StoragePoolException` if given size is
|
||||||
|
less than current_size
|
||||||
|
'''
|
||||||
|
_type = volume.volume_type
|
||||||
|
if _type not in ['origin', 'read-write', 'volatile']:
|
||||||
|
raise StoragePoolException('Can not resize a %s volume %s' %
|
||||||
|
(_type, volume.vid))
|
||||||
|
|
||||||
@property
|
if size <= volume.size:
|
||||||
def root_img(self):
|
raise StoragePoolException(
|
||||||
'''Path to the root image'''
|
'For your own safety, shrinking of %s is'
|
||||||
return self.vm.template.storage.root_img \
|
' disabled. If you really know what you'
|
||||||
if hasattr(self.vm, 'template') and self.vm.template \
|
' are doing, use `truncate` on %s manually.' %
|
||||||
else self.abspath(qubes.config.vm_files['root_img'])
|
(volume.name, volume.vid))
|
||||||
|
|
||||||
|
if _type == 'origin':
|
||||||
|
path = volume.path_origin
|
||||||
|
elif _type in ['read-write', 'volatile']:
|
||||||
|
path = volume.path
|
||||||
|
|
||||||
@property
|
with open(path, 'a+b') as fd:
|
||||||
def rootcow_img(self):
|
|
||||||
'''Path to the root COW image'''
|
|
||||||
|
|
||||||
if isinstance(self.vm, qubes.vm.templatevm.TemplateVM):
|
|
||||||
return self.abspath(qubes.config.vm_files['rootcow_img'])
|
|
||||||
|
|
||||||
return None
|
|
||||||
|
|
||||||
|
|
||||||
@property
|
|
||||||
def volatile_img(self):
|
|
||||||
'''Path to the volatile image'''
|
|
||||||
return self.abspath(qubes.config.vm_files['volatile_img'])
|
|
||||||
|
|
||||||
|
|
||||||
def format_disk_dev(self, path, vdev, script=None, rw=True, devtype='disk',
|
|
||||||
domain=None):
|
|
||||||
if path is None:
|
|
||||||
return ''
|
|
||||||
|
|
||||||
element = lxml.etree.Element('disk')
|
|
||||||
element.set('type', 'block')
|
|
||||||
element.set('device', devtype)
|
|
||||||
|
|
||||||
element.append(lxml.etree.Element('driver', name='phy'))
|
|
||||||
element.append(lxml.etree.Element('source', dev=path))
|
|
||||||
element.append(lxml.etree.Element('target', dev=vdev))
|
|
||||||
|
|
||||||
if not rw:
|
|
||||||
element.append(lxml.etree.Element('readonly'))
|
|
||||||
if domain is not None:
|
|
||||||
# XXX vm.name?
|
|
||||||
element.append(lxml.etree.Element('domain', name=domain))
|
|
||||||
if script:
|
|
||||||
element.append(lxml.etree.Element('script', path=script))
|
|
||||||
|
|
||||||
# TODO return element
|
|
||||||
return lxml.etree.tostring(element)
|
|
||||||
|
|
||||||
|
|
||||||
def root_dev_config(self):
|
|
||||||
if isinstance(self.vm, qubes.vm.templatevm.TemplateVM):
|
|
||||||
return self.format_disk_dev(
|
|
||||||
'{root}:{rootcow}'.format(
|
|
||||||
root=self.root_img,
|
|
||||||
rootcow=self.rootcow_img),
|
|
||||||
self.root_dev,
|
|
||||||
script='block-origin')
|
|
||||||
|
|
||||||
elif self.vm.hvm and hasattr(self.vm, 'template'):
|
|
||||||
# HVM template-based VM - only one device-mapper layer, in dom0
|
|
||||||
# (root+volatile)
|
|
||||||
# HVM detection based on 'kernel' property is massive hack,
|
|
||||||
# but taken from assumption that VM needs Qubes-specific kernel
|
|
||||||
# (actually initramfs) to assemble the second layer of device-mapper
|
|
||||||
return self.format_disk_dev(
|
|
||||||
'{root}:{volatile}'.format(
|
|
||||||
root=self.vm.template.storage.root_img,
|
|
||||||
volatile=self.volatile_img),
|
|
||||||
self.root_dev,
|
|
||||||
script='block-snapshot')
|
|
||||||
|
|
||||||
elif hasattr(self.vm, 'template'):
|
|
||||||
# any other template-based VM - two device-mapper layers: one
|
|
||||||
# in dom0 (here) from root+root-cow, and another one from
|
|
||||||
# this+volatile.img
|
|
||||||
return self.format_disk_dev(
|
|
||||||
'{root}:{template_rootcow}'.format(
|
|
||||||
root=self.root_img,
|
|
||||||
template_rootcow=self.vm.template.storage.rootcow_img),
|
|
||||||
self.root_dev,
|
|
||||||
script='block-snapshot',
|
|
||||||
rw=False)
|
|
||||||
|
|
||||||
else:
|
|
||||||
# standalone qube
|
|
||||||
return self.format_disk_dev(self.root_img, self.root_dev)
|
|
||||||
|
|
||||||
|
|
||||||
def private_dev_config(self):
|
|
||||||
return self.format_disk_dev(self.private_img, self.private_dev)
|
|
||||||
|
|
||||||
def volatile_dev_config(self):
|
|
||||||
return self.format_disk_dev(self.volatile_img, self.volatile_dev)
|
|
||||||
|
|
||||||
|
|
||||||
def create_on_disk_private_img(self, source_template=None):
|
|
||||||
if source_template is None:
|
|
||||||
f_private = open(self.private_img, 'a+b')
|
|
||||||
f_private.truncate(self.private_img_size)
|
|
||||||
f_private.close()
|
|
||||||
|
|
||||||
else:
|
|
||||||
self.vm.log.info("Copying the template's private image: {}".format(
|
|
||||||
source_template.storage.private_img))
|
|
||||||
self._copy_file(source_template.storage.private_img,
|
|
||||||
self.private_img)
|
|
||||||
|
|
||||||
|
|
||||||
def create_on_disk_root_img(self, source_template=None):
|
|
||||||
if source_template is None:
|
|
||||||
fd = open(self.root_img, 'a+b')
|
|
||||||
fd.truncate(self.root_img_size)
|
|
||||||
fd.close()
|
|
||||||
|
|
||||||
elif self.vm.updateable:
|
|
||||||
# if not updateable, just use template's disk
|
|
||||||
self.vm.log.info("--> Copying the template's root image: {}".format(
|
|
||||||
source_template.storage.root_img))
|
|
||||||
self._copy_file(source_template.storage.root_img, self.root_img)
|
|
||||||
|
|
||||||
|
|
||||||
def resize_private_img(self, size):
|
|
||||||
fd = open(self.private_img, 'a+b')
|
|
||||||
fd.truncate(size)
|
fd.truncate(size)
|
||||||
fd.close()
|
|
||||||
|
|
||||||
|
self._resize_loop_device(path)
|
||||||
|
|
||||||
|
def remove(self, volume):
|
||||||
|
if volume.volume_type in ['read-write', 'volatile']:
|
||||||
|
_remove_if_exists(volume.vid)
|
||||||
|
elif volume.volume_type == 'origin':
|
||||||
|
_remove_if_exists(volume.vid)
|
||||||
|
_remove_if_exists(volume.path_cow)
|
||||||
|
|
||||||
|
def rename(self, volume, old_name, new_name):
|
||||||
|
assert issubclass(volume.__class__, XenVolume)
|
||||||
|
old_dir = os.path.dirname(volume.path)
|
||||||
|
new_dir = os.path.join(os.path.dirname(old_dir), new_name)
|
||||||
|
|
||||||
|
if not os.path.exists(new_dir):
|
||||||
|
os.makedirs(new_dir)
|
||||||
|
|
||||||
|
if volume.volume_type == 'read-write':
|
||||||
|
volume.rename_target_dir(new_name, new_dir)
|
||||||
|
elif volume.volume_type == 'read-only':
|
||||||
|
volume.rename_target_dir(old_name, new_dir)
|
||||||
|
elif volume.volume_type in ['origin', 'volatile']:
|
||||||
|
volume.rename_target_dir(new_dir)
|
||||||
|
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def _resize_loop_device(self, path):
|
||||||
# find loop device if any
|
# find loop device if any
|
||||||
p = subprocess.Popen(
|
p = subprocess.Popen(
|
||||||
['sudo', 'losetup', '--associated', self.private_img],
|
['sudo', 'losetup', '--associated', path],
|
||||||
stdout=subprocess.PIPE)
|
stdout=subprocess.PIPE)
|
||||||
result = p.communicate()
|
result = p.communicate()
|
||||||
|
|
||||||
@ -206,89 +143,359 @@ class XenStorage(qubes.storage.Storage):
|
|||||||
loop_dev = m.group(1)
|
loop_dev = m.group(1)
|
||||||
|
|
||||||
# resize loop device
|
# resize loop device
|
||||||
subprocess.check_call(
|
subprocess.check_call(['sudo', 'losetup', '--set-capacity',
|
||||||
['sudo', 'losetup', '--set-capacity', loop_dev])
|
loop_dev])
|
||||||
|
|
||||||
|
def commit_template_changes(self, volume):
|
||||||
|
if volume.volume_type != 'origin':
|
||||||
|
return volume
|
||||||
|
|
||||||
def commit_template_changes(self):
|
if os.path.exists(volume.path_cow):
|
||||||
assert isinstance(self.vm, qubes.vm.templatevm.TemplateVM)
|
os.rename(volume.path_cow, volume.path_cow + '.old')
|
||||||
|
|
||||||
# TODO: move rootcow_img to this class; the same for vm.is_outdated()
|
|
||||||
if os.path.exists(self.vm.rootcow_img):
|
|
||||||
os.rename(self.vm.rootcow_img, self.vm.rootcow_img + '.old')
|
|
||||||
|
|
||||||
old_umask = os.umask(002)
|
old_umask = os.umask(002)
|
||||||
f_cow = open(self.vm.rootcow_img, 'w')
|
with open(volume.path_cow, 'w') as f_cow:
|
||||||
f_root = open(self.root_img, 'r')
|
f_cow.truncate(volume.size)
|
||||||
f_root.seek(0, os.SEEK_END)
|
|
||||||
# make empty sparse file of the same size as root.img
|
|
||||||
f_cow.truncate(f_root.tell())
|
|
||||||
f_cow.close()
|
|
||||||
f_root.close()
|
|
||||||
os.umask(old_umask)
|
os.umask(old_umask)
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def destroy(self):
|
||||||
def reset_volatile_storage(self):
|
|
||||||
try:
|
|
||||||
# no template set, in any way (Standalone VM, Template VM)
|
|
||||||
if self.vm.template is None:
|
|
||||||
raise AttributeError
|
|
||||||
|
|
||||||
# template-based HVM with only one device-mapper layer -
|
|
||||||
# volatile.img used as upper layer on root.img, no root-cow.img
|
|
||||||
# intermediate layer
|
|
||||||
if self.vm.hvm:
|
|
||||||
if os.path.exists(self.volatile_img):
|
|
||||||
if self.vm.debug:
|
|
||||||
if os.path.getmtime(self.vm.template.storage.root_img) \
|
|
||||||
> os.path.getmtime(self.volatile_img):
|
|
||||||
self.vm.log.warning(
|
|
||||||
'Template have changed, resetting root.img')
|
|
||||||
else:
|
|
||||||
self.vm.log.warning(
|
|
||||||
'Debug mode: not resetting root.img; if you'
|
|
||||||
' want to force root.img reset, either'
|
|
||||||
' update template VM, or remove volatile.img'
|
|
||||||
' file.')
|
|
||||||
return
|
|
||||||
|
|
||||||
os.remove(self.volatile_img)
|
|
||||||
|
|
||||||
# FIXME stat on f_root; with open() ...
|
|
||||||
f_volatile = open(self.volatile_img, "w")
|
|
||||||
f_root = open(self.vm.template.storage.root_img, "r")
|
|
||||||
# make empty sparse file of the same size as root.img
|
|
||||||
f_root.seek(0, os.SEEK_END)
|
|
||||||
f_volatile.truncate(f_root.tell())
|
|
||||||
f_volatile.close()
|
|
||||||
f_root.close()
|
|
||||||
return # XXX why is that? super() does not run
|
|
||||||
except AttributeError: # self.vm.template
|
|
||||||
pass
|
pass
|
||||||
|
|
||||||
super(XenStorage, self).reset_volatile_storage()
|
def setup(self):
|
||||||
|
create_dir_if_not_exists(self.dir_path)
|
||||||
|
appvms_path = os.path.join(self.dir_path, 'appvms')
|
||||||
|
create_dir_if_not_exists(appvms_path)
|
||||||
|
vm_templates_path = os.path.join(self.dir_path, 'vm-templates')
|
||||||
|
create_dir_if_not_exists(vm_templates_path)
|
||||||
|
|
||||||
|
def start(self, volume):
|
||||||
|
if volume.volume_type == 'volatile':
|
||||||
|
self._reset_volume(volume)
|
||||||
|
if volume.volume_type in ['origin', 'snapshot']:
|
||||||
|
_check_path(volume.path_origin)
|
||||||
|
_check_path(volume.path_cow)
|
||||||
|
else:
|
||||||
|
_check_path(volume.path)
|
||||||
|
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def stop(self, volume):
|
||||||
|
pass
|
||||||
|
|
||||||
|
def _reset_volume(self, volume):
|
||||||
|
''' Remove and recreate a volatile volume '''
|
||||||
|
assert volume.volume_type == 'volatile', "Not a volatile volume"
|
||||||
|
|
||||||
|
assert volume.size
|
||||||
|
|
||||||
|
_remove_if_exists(volume)
|
||||||
|
|
||||||
|
with open(volume.path, "w") as f_volatile:
|
||||||
|
f_volatile.truncate(volume.size)
|
||||||
|
return volume
|
||||||
|
|
||||||
|
def target_dir(self, vm):
|
||||||
|
""" Returns the path to vmdir depending on the type of the VM.
|
||||||
|
|
||||||
|
The default QubesOS file storage saves the vm images in three
|
||||||
|
different directories depending on the ``QubesVM`` type:
|
||||||
|
|
||||||
|
* ``appvms`` for ``QubesAppVm`` or ``QubesHvm``
|
||||||
|
* ``vm-templates`` for ``QubesTemplateVm`` or ``QubesTemplateHvm``
|
||||||
|
|
||||||
|
Args:
|
||||||
|
vm: a QubesVM
|
||||||
|
pool_dir: the root directory of the pool
|
||||||
|
|
||||||
|
Returns:
|
||||||
|
string (str) absolute path to the directory where the vm files
|
||||||
|
are stored
|
||||||
|
"""
|
||||||
|
if vm.is_template():
|
||||||
|
subdir = 'vm-templates'
|
||||||
|
elif vm.is_disposablevm():
|
||||||
|
subdir = 'appvms'
|
||||||
|
return os.path.join(self.dir_path, subdir,
|
||||||
|
vm.template.name + '-dvm')
|
||||||
|
else:
|
||||||
|
subdir = 'appvms'
|
||||||
|
|
||||||
|
return os.path.join(self.dir_path, subdir, vm.name)
|
||||||
|
|
||||||
|
def init_volume(self, vm, volume_config):
|
||||||
|
assert 'volume_type' in volume_config, "Volume type missing " \
|
||||||
|
+ str(volume_config)
|
||||||
|
volume_type = volume_config['volume_type']
|
||||||
|
known_types = {
|
||||||
|
'read-write': ReadWriteFile,
|
||||||
|
'read-only': ReadOnlyFile,
|
||||||
|
'origin': OriginFile,
|
||||||
|
'snapshot': SnapshotFile,
|
||||||
|
'volatile': VolatileFile,
|
||||||
|
}
|
||||||
|
if volume_type not in known_types:
|
||||||
|
raise StoragePoolException("Unknown volume type " + volume_type)
|
||||||
|
|
||||||
|
if volume_type in ['snapshot', 'read-only']:
|
||||||
|
origin_pool = vm.app.get_pool(volume_config['pool'])
|
||||||
|
assert isinstance(origin_pool,
|
||||||
|
XenPool), 'Origin volume not a xen volume'
|
||||||
|
volume_config['target_dir'] = origin_pool.target_dir(vm.template)
|
||||||
|
name = volume_config['name']
|
||||||
|
volume_config['size'] = vm.template.volume_config[name]['size']
|
||||||
|
else:
|
||||||
|
volume_config['target_dir'] = self.target_dir(vm)
|
||||||
|
|
||||||
|
return known_types[volume_type](**volume_config)
|
||||||
|
|
||||||
|
|
||||||
def prepare_for_vm_startup(self):
|
class XenVolume(Volume):
|
||||||
super(XenStorage, self).prepare_for_vm_startup()
|
''' Parent class for the xen volumes implementation which expects a
|
||||||
|
`target_dir` param on initialization.
|
||||||
|
'''
|
||||||
|
|
||||||
if self.drive is not None:
|
def __init__(self, target_dir, **kwargs):
|
||||||
# pylint: disable=unused-variable
|
self.target_dir = target_dir
|
||||||
(drive_type, drive_domain, drive_path) = self.drive.split(":")
|
assert self.target_dir, "target_dir not specified"
|
||||||
|
super(XenVolume, self).__init__(**kwargs)
|
||||||
|
|
||||||
if drive_domain.lower() != "dom0":
|
|
||||||
# XXX "VM '{}' holding '{}' does not exists".format(
|
|
||||||
drive_vm = self.vm.app.domains[drive_domain]
|
|
||||||
|
|
||||||
if not drive_vm.is_running():
|
class SizeMixIn(XenVolume):
|
||||||
raise qubes.exc.QubesVMNotRunningError(drive_vm,
|
''' A mix in which expects a `size` param to be > 0 on initialization and
|
||||||
'VM {!r} holding {!r} isn\'t running'.format(
|
provides a usage property wrapper.
|
||||||
drive_domain, drive_path))
|
'''
|
||||||
|
|
||||||
if self.rootcow_img and not os.path.exists(self.rootcow_img):
|
def __init__(self, size=0, **kwargs):
|
||||||
self.commit_template_changes()
|
assert size, 'Empty size provided'
|
||||||
|
assert size > 0, 'Size for volume ' + kwargs['name'] + ' is <=0'
|
||||||
|
super(SizeMixIn, self).__init__(size=int(size), **kwargs)
|
||||||
|
|
||||||
class XenPool(qubes.storage.Pool):
|
@property
|
||||||
def get_storage(self):
|
def usage(self):
|
||||||
""" Returns an instantiated ``XenStorage``. """
|
''' Returns the actualy used space '''
|
||||||
return XenStorage(self.vm, vmdir=self.vmdir)
|
return get_disk_usage(self.vid)
|
||||||
|
|
||||||
|
@property
|
||||||
|
def config(self):
|
||||||
|
''' return config data for serialization to qubes.xml '''
|
||||||
|
return {'name': self.name,
|
||||||
|
'pool': self.pool,
|
||||||
|
'size': str(self.size),
|
||||||
|
'volume_type': self.volume_type}
|
||||||
|
|
||||||
|
|
||||||
|
class ReadWriteFile(SizeMixIn):
|
||||||
|
''' Represents a readable & writable file image based volume '''
|
||||||
|
def __init__(self, **kwargs):
|
||||||
|
super(ReadWriteFile, self).__init__(**kwargs)
|
||||||
|
self.path = os.path.join(self.target_dir, self.name + '.img')
|
||||||
|
self.vid = self.path
|
||||||
|
|
||||||
|
def rename_target_dir(self, new_name, new_dir):
|
||||||
|
''' Called by :py:class:`XenPool` when a domain changes it's name '''
|
||||||
|
old_path = self.path
|
||||||
|
file_name = os.path.basename(self.path)
|
||||||
|
new_path = os.path.join(new_dir, file_name)
|
||||||
|
|
||||||
|
os.rename(old_path, new_path)
|
||||||
|
self.target_dir = new_dir
|
||||||
|
self.path = new_path
|
||||||
|
self.vid = self.path
|
||||||
|
|
||||||
|
|
||||||
|
class ReadOnlyFile(XenVolume):
|
||||||
|
''' Represents a readonly file image based volume '''
|
||||||
|
usage = 0
|
||||||
|
|
||||||
|
def __init__(self, size=0, **kwargs):
|
||||||
|
super(ReadOnlyFile, self).__init__(size=int(size), **kwargs)
|
||||||
|
self.path = self.vid
|
||||||
|
|
||||||
|
def rename_target_dir(self, old_name, new_dir):
|
||||||
|
""" Called by :py:class:`XenPool` when a domain changes it's name.
|
||||||
|
|
||||||
|
Only copies the volume if it belongs to the domain being renamed.
|
||||||
|
Currently if a volume is in a directory named the same as the domain,
|
||||||
|
it's ”owned” by the domain.
|
||||||
|
"""
|
||||||
|
if os.path.basename(self.target_dir) == old_name:
|
||||||
|
file_name = os.path.basename(self.path)
|
||||||
|
new_path = os.path.join(new_dir, file_name)
|
||||||
|
old_path = self.path
|
||||||
|
|
||||||
|
os.rename(old_path, new_path)
|
||||||
|
|
||||||
|
self.target_dir = new_dir
|
||||||
|
self.path = new_path
|
||||||
|
self.vid = self.path
|
||||||
|
|
||||||
|
|
||||||
|
class OriginFile(SizeMixIn):
|
||||||
|
''' Represents a readable, writeable & snapshotable file image based volume.
|
||||||
|
|
||||||
|
This is used for TemplateVM's
|
||||||
|
'''
|
||||||
|
|
||||||
|
script = 'block-origin'
|
||||||
|
|
||||||
|
def __init__(self, **kwargs):
|
||||||
|
super(OriginFile, self).__init__(**kwargs)
|
||||||
|
self.path_origin = os.path.join(self.target_dir, self.name + '.img')
|
||||||
|
self.path_cow = os.path.join(self.target_dir, self.name + '-cow.img')
|
||||||
|
self.path = '%s:%s' % (self.path_origin, self.path_cow)
|
||||||
|
self.vid = self.path_origin
|
||||||
|
|
||||||
|
def commit(self):
|
||||||
|
''' Commit Template changes '''
|
||||||
|
raise NotImplementedError
|
||||||
|
|
||||||
|
def rename_target_dir(self, new_dir):
|
||||||
|
''' Called by :py:class:`XenPool` when a domain changes it's name '''
|
||||||
|
old_path_origin = self.path_origin
|
||||||
|
old_path_cow = self.path_cow
|
||||||
|
new_path_origin = os.path.join(new_dir, self.name + '.img')
|
||||||
|
new_path_cow = os.path.join(new_dir, self.name + '-cow.img')
|
||||||
|
os.rename(old_path_origin, new_path_origin)
|
||||||
|
os.rename(old_path_cow, new_path_cow)
|
||||||
|
self.target_dir = new_dir
|
||||||
|
self.path_origin = new_path_origin
|
||||||
|
self.path_cow = new_path_cow
|
||||||
|
self.path = '%s:%s' % (self.path_origin, self.path_cow)
|
||||||
|
self.vid = self.path_origin
|
||||||
|
|
||||||
|
@property
|
||||||
|
def usage(self):
|
||||||
|
result = 0
|
||||||
|
if os.path.exists(self.path_origin):
|
||||||
|
result += get_disk_usage(self.path_origin)
|
||||||
|
if os.path.exists(self.path_cow):
|
||||||
|
result += get_disk_usage(self.path_cow)
|
||||||
|
return result
|
||||||
|
|
||||||
|
|
||||||
|
class SnapshotFile(XenVolume):
|
||||||
|
''' Represents a readonly snapshot of an :py:class:`OriginFile` volume '''
|
||||||
|
script = 'block-snapshot'
|
||||||
|
rw = False
|
||||||
|
usage = 0
|
||||||
|
|
||||||
|
def __init__(self, name=None, size=None, **kwargs):
|
||||||
|
assert size
|
||||||
|
super(SnapshotFile, self).__init__(name=name, size=int(size), **kwargs)
|
||||||
|
self.path_origin = os.path.join(self.target_dir, name + '.img')
|
||||||
|
self.path_cow = os.path.join(self.target_dir, name + '-cow.img')
|
||||||
|
self.path = '%s:%s' % (self.path_origin, self.path_cow)
|
||||||
|
self.vid = self.path_origin
|
||||||
|
|
||||||
|
|
||||||
|
class VolatileFile(SizeMixIn):
|
||||||
|
''' Represents a readable & writeable file based volume, which will be
|
||||||
|
discarded and recreated at each startup.
|
||||||
|
'''
|
||||||
|
def __init__(self, **kwargs):
|
||||||
|
super(VolatileFile, self).__init__(**kwargs)
|
||||||
|
self.path = os.path.join(self.target_dir, self.name + '.img')
|
||||||
|
self.vid = self.path
|
||||||
|
|
||||||
|
def rename_target_dir(self, new_dir):
|
||||||
|
''' Called by :py:class:`XenPool` when a domain changes it's name '''
|
||||||
|
_remove_if_exists(self)
|
||||||
|
file_name = os.path.basename(self.path)
|
||||||
|
self.target_dir = new_dir
|
||||||
|
new_path = os.path.join(new_dir, file_name)
|
||||||
|
self.path = new_path
|
||||||
|
self.vid = self.path
|
||||||
|
|
||||||
|
|
||||||
|
def create_sparse_file(path, size):
|
||||||
|
''' Create an empty sparse file '''
|
||||||
|
if os.path.exists(path):
|
||||||
|
raise IOError("Volume %s already exists", path)
|
||||||
|
parent_dir = os.path.dirname(path)
|
||||||
|
if not os.path.exists(parent_dir):
|
||||||
|
os.makedirs(parent_dir)
|
||||||
|
with open(path, 'a+b') as fh:
|
||||||
|
fh.truncate(size)
|
||||||
|
|
||||||
|
|
||||||
|
def get_disk_usage_one(st):
|
||||||
|
'''Extract disk usage of one inode from its stat_result struct.
|
||||||
|
|
||||||
|
If known, get real disk usage, as written to device by filesystem, not
|
||||||
|
logical file size. Those values may be different for sparse files.
|
||||||
|
|
||||||
|
:param os.stat_result st: stat result
|
||||||
|
:returns: disk usage
|
||||||
|
'''
|
||||||
|
try:
|
||||||
|
return st.st_blocks * BLKSIZE
|
||||||
|
except AttributeError:
|
||||||
|
return st.st_size
|
||||||
|
|
||||||
|
|
||||||
|
def get_disk_usage(path):
|
||||||
|
'''Get real disk usage of given path (file or directory).
|
||||||
|
|
||||||
|
When *path* points to directory, then it is evaluated recursively.
|
||||||
|
|
||||||
|
This function tries estiate real disk usage. See documentation of
|
||||||
|
:py:func:`get_disk_usage_one`.
|
||||||
|
|
||||||
|
:param str path: path to evaluate
|
||||||
|
:returns: disk usage
|
||||||
|
'''
|
||||||
|
try:
|
||||||
|
st = os.lstat(path)
|
||||||
|
except OSError:
|
||||||
|
return 0
|
||||||
|
|
||||||
|
ret = get_disk_usage_one(st)
|
||||||
|
|
||||||
|
# if path is not a directory, this is skipped
|
||||||
|
for dirpath, dirnames, filenames in os.walk(path):
|
||||||
|
for name in dirnames + filenames:
|
||||||
|
ret += get_disk_usage_one(os.lstat(os.path.join(dirpath, name)))
|
||||||
|
|
||||||
|
return ret
|
||||||
|
|
||||||
|
|
||||||
|
def create_dir_if_not_exists(path):
|
||||||
|
""" Check if a directory exists in if not create it.
|
||||||
|
|
||||||
|
This method does not create any parent directories.
|
||||||
|
"""
|
||||||
|
if not os.path.exists(path):
|
||||||
|
os.mkdir(path)
|
||||||
|
|
||||||
|
|
||||||
|
def copy_file(source, destination):
|
||||||
|
'''Effective file copy, preserving sparse files etc.
|
||||||
|
'''
|
||||||
|
# TODO: Windows support
|
||||||
|
# We prefer to use Linux's cp, because it nicely handles sparse files
|
||||||
|
assert os.path.exists(source), \
|
||||||
|
"Missing the source %s to copy from" % source
|
||||||
|
assert not os.path.exists(destination), \
|
||||||
|
"Destination %s already exists" % destination
|
||||||
|
|
||||||
|
parent_dir = os.path.dirname(destination)
|
||||||
|
if not os.path.exists(parent_dir):
|
||||||
|
os.makedirs(parent_dir)
|
||||||
|
|
||||||
|
try:
|
||||||
|
subprocess.check_call(['cp', '--reflink=auto', source, destination])
|
||||||
|
except subprocess.CalledProcessError:
|
||||||
|
raise IOError('Error while copying {!r} to {!r}'.format(source,
|
||||||
|
destination))
|
||||||
|
|
||||||
|
|
||||||
|
def _remove_if_exists(volume):
|
||||||
|
if os.path.exists(volume.path):
|
||||||
|
os.remove(volume.path)
|
||||||
|
|
||||||
|
|
||||||
|
def _check_path(path):
|
||||||
|
''' Raise an StoragePoolException if ``path`` does not exist'''
|
||||||
|
if not os.path.exists(path):
|
||||||
|
raise StoragePoolException('Missing image file: %s' % path)
|
||||||
|
@ -820,7 +820,7 @@ class BackupTestsMixin(SystemTestsMixin):
|
|||||||
name=vmname, template=template, provides_network=True, label='red')
|
name=vmname, template=template, provides_network=True, label='red')
|
||||||
testnet.create_on_disk()
|
testnet.create_on_disk()
|
||||||
vms.append(testnet)
|
vms.append(testnet)
|
||||||
self.fill_image(testnet.private_img, 20*1024*1024)
|
self.fill_image(testnet.volumes['private'].vid, 20*1024*1024)
|
||||||
|
|
||||||
vmname = self.make_vm_name('test1')
|
vmname = self.make_vm_name('test1')
|
||||||
if self.verbose:
|
if self.verbose:
|
||||||
@ -831,16 +831,17 @@ class BackupTestsMixin(SystemTestsMixin):
|
|||||||
testvm1.netvm = testnet
|
testvm1.netvm = testnet
|
||||||
testvm1.create_on_disk()
|
testvm1.create_on_disk()
|
||||||
vms.append(testvm1)
|
vms.append(testvm1)
|
||||||
self.fill_image(testvm1.private_img, 100*1024*1024)
|
self.fill_image(testvm1.volumes['private'].vid, 100*1024*1024)
|
||||||
|
|
||||||
vmname = self.make_vm_name('testhvm1')
|
vmname = self.make_vm_name('testhvm1')
|
||||||
if self.verbose:
|
if self.verbose:
|
||||||
print >>sys.stderr, "-> Creating %s" % vmname
|
print >>sys.stderr, "-> Creating %s" % vmname
|
||||||
testvm2 = self.app.add_new_vm(qubes.vm.standalonevm.StandaloneVM,
|
testvm2 = self.app.add_new_vm(qubes.vm.standalonevm.StandaloneVM,
|
||||||
name=vmname,
|
name=vmname,
|
||||||
hvm=True, label='red')
|
hvm=True,
|
||||||
testvm2.create_on_disk()
|
label='red')
|
||||||
self.fill_image(testvm2.root_img, 1024*1024*1024, True)
|
testvm2.create_on_disk(verbose=self.verbose)
|
||||||
|
self.fill_image(testvm2.volumes['root'].vid, 1024 * 1024 * 1024, True)
|
||||||
vms.append(testvm2)
|
vms.append(testvm2)
|
||||||
|
|
||||||
vmname = self.make_vm_name('template')
|
vmname = self.make_vm_name('template')
|
||||||
|
@ -392,7 +392,8 @@ class TC_03_QvmRevertTemplateChanges(qubes.tests.SystemTestsMixin,
|
|||||||
self.save_and_reload_db()
|
self.save_and_reload_db()
|
||||||
|
|
||||||
def get_rootimg_checksum(self):
|
def get_rootimg_checksum(self):
|
||||||
p = subprocess.Popen(['sha1sum', self.test_template.root_img],
|
p = subprocess.Popen(
|
||||||
|
['sha1sum', self.test_template.volumes['root'].vid],
|
||||||
stdout=subprocess.PIPE)
|
stdout=subprocess.PIPE)
|
||||||
return p.communicate()[0]
|
return p.communicate()[0]
|
||||||
|
|
||||||
|
@ -17,9 +17,12 @@
|
|||||||
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
||||||
|
|
||||||
import qubes.log
|
import qubes.log
|
||||||
from qubes.storage import StoragePoolException, pool_drivers
|
from qubes.exc import QubesException
|
||||||
|
from qubes.storage import pool_drivers
|
||||||
from qubes.storage.xen import XenPool
|
from qubes.storage.xen import XenPool
|
||||||
from qubes.tests import QubesTestCase
|
from qubes.tests import QubesTestCase, SystemTestsMixin
|
||||||
|
|
||||||
|
# :pylint: disable=invalid-name
|
||||||
|
|
||||||
|
|
||||||
class TestApp(qubes.tests.TestEmitter):
|
class TestApp(qubes.tests.TestEmitter):
|
||||||
@ -27,30 +30,26 @@ class TestApp(qubes.tests.TestEmitter):
|
|||||||
|
|
||||||
|
|
||||||
class TestVM(object):
|
class TestVM(object):
|
||||||
def __init__(self, app, qid, name, pool_name, template=None):
|
def __init__(self, test, template=None):
|
||||||
super(TestVM, self).__init__()
|
self.app = test.app
|
||||||
self.app = app
|
self.name = test.make_vm_name('appvm')
|
||||||
self.qid = qid
|
|
||||||
self.name = name
|
|
||||||
self.pool_name = pool_name
|
|
||||||
self.template = template
|
|
||||||
self.hvm = False
|
|
||||||
self.storage = qubes.storage.get_pool(self.pool_name,
|
|
||||||
self).get_storage()
|
|
||||||
self.log = qubes.log.get_vm_logger(self.name)
|
self.log = qubes.log.get_vm_logger(self.name)
|
||||||
|
|
||||||
|
if template:
|
||||||
|
self.template = template
|
||||||
|
|
||||||
def is_template(self):
|
def is_template(self):
|
||||||
|
# :pylint: disable=no-self-use
|
||||||
return False
|
return False
|
||||||
|
|
||||||
def is_disposablevm(self):
|
def is_disposablevm(self):
|
||||||
|
# :pylint: disable=no-self-use
|
||||||
return False
|
return False
|
||||||
|
|
||||||
@property
|
|
||||||
def dir_path(self):
|
|
||||||
return self.storage.vmdir
|
|
||||||
|
|
||||||
|
|
||||||
class TestTemplateVM(TestVM):
|
class TestTemplateVM(TestVM):
|
||||||
|
dir_path_prefix = qubes.config.system_path['qubes_templates_dir']
|
||||||
|
|
||||||
def is_template(self):
|
def is_template(self):
|
||||||
return True
|
return True
|
||||||
|
|
||||||
@ -60,46 +59,47 @@ class TestDisposableVM(TestVM):
|
|||||||
return True
|
return True
|
||||||
|
|
||||||
|
|
||||||
class TC_00_Pool(QubesTestCase):
|
class TC_00_Pool(SystemTestsMixin, QubesTestCase):
|
||||||
""" This class tests the utility methods from :mod:``qubes.storage`` """
|
""" This class tests the utility methods from :mod:``qubes.storage`` """
|
||||||
|
|
||||||
def setUp(self):
|
def setUp(self):
|
||||||
super(TC_00_Pool, self).setUp()
|
super(TC_00_Pool, self).setUp()
|
||||||
|
self.init_default_template()
|
||||||
|
|
||||||
def test_000_unknown_pool_driver(self):
|
def test_000_unknown_pool_driver(self):
|
||||||
# :pylint: disable=protected-access
|
# :pylint: disable=protected-access
|
||||||
""" Expect an exception when unknown pool is requested"""
|
""" Expect an exception when unknown pool is requested"""
|
||||||
with self.assertRaises(StoragePoolException):
|
with self.assertRaises(QubesException):
|
||||||
qubes.storage._get_pool_klass('foo-bar')
|
self.app.get_pool('foo-bar')
|
||||||
|
|
||||||
def test_001_all_pool_drivers(self):
|
def test_001_all_pool_drivers(self):
|
||||||
""" The only predefined pool driver is file """
|
""" The only predefined pool driver is xen """
|
||||||
self.assertEquals(["xen"], pool_drivers())
|
self.assertEquals(['linux-kernel', 'xen'], pool_drivers())
|
||||||
|
|
||||||
def test_002_get_pool_klass(self):
|
def test_002_get_pool_klass(self):
|
||||||
""" Expect the default pool to be `XenPool` """
|
""" Expect the default pool to be `XenPool` """
|
||||||
# :pylint: disable=protected-access
|
# :pylint: disable=protected-access
|
||||||
result = qubes.storage._get_pool_klass('default')
|
result = self.app.get_pool('default')
|
||||||
self.assertTrue(result is XenPool)
|
self.assertIsInstance(result, XenPool)
|
||||||
|
|
||||||
def test_003_pool_exists_default(self):
|
def test_003_pool_exists_default(self):
|
||||||
""" Expect the default pool to exists """
|
""" Expect the default pool to exists """
|
||||||
self.assertTrue(qubes.storage.pool_exists('default'))
|
self.assertPoolExists('default')
|
||||||
|
|
||||||
def test_004_pool_exists_random(self):
|
def test_004_add_remove_pool(self):
|
||||||
""" Expect this pool to not a exist """
|
|
||||||
self.assertFalse(qubes.storage.pool_exists(
|
|
||||||
'asdh312096r832598213iudhas'))
|
|
||||||
|
|
||||||
def test_005_add_remove_pool(self):
|
|
||||||
""" Tries to adding and removing a pool. """
|
""" Tries to adding and removing a pool. """
|
||||||
pool_name = 'asdjhrp89132'
|
pool_name = 'asdjhrp89132'
|
||||||
|
|
||||||
# make sure it's really does not exist
|
# make sure it's really does not exist
|
||||||
qubes.storage.remove_pool(pool_name)
|
self.app.remove_pool(pool_name)
|
||||||
|
self.assertFalse(self.assertPoolExists(pool_name))
|
||||||
|
|
||||||
qubes.storage.add_pool(pool_name, driver='xen')
|
self.app.add_pool(name=pool_name, driver='xen', dir_path='/tmp/asdjhrp89132')
|
||||||
self.assertTrue(qubes.storage.pool_exists(pool_name))
|
self.assertTrue(self.assertPoolExists(pool_name))
|
||||||
|
|
||||||
qubes.storage.remove_pool(pool_name)
|
self.app.remove_pool(pool_name)
|
||||||
self.assertFalse(qubes.storage.pool_exists(pool_name))
|
self.assertFalse(self.assertPoolExists(pool_name))
|
||||||
|
|
||||||
|
def assertPoolExists(self, pool):
|
||||||
|
""" Check if specified pool exists """
|
||||||
|
return pool in self.app.pools.keys()
|
||||||
|
@ -18,13 +18,21 @@
|
|||||||
|
|
||||||
import os
|
import os
|
||||||
import shutil
|
import shutil
|
||||||
import unittest
|
|
||||||
import qubes.storage
|
import qubes.storage
|
||||||
import qubes.tests.storage
|
import qubes.tests.storage
|
||||||
|
from qubes.config import defaults
|
||||||
|
from qubes.storage import Storage
|
||||||
|
from qubes.storage.xen import (OriginFile, ReadOnlyFile, ReadWriteFile,
|
||||||
|
SnapshotFile, VolatileFile)
|
||||||
from qubes.tests import QubesTestCase, SystemTestsMixin
|
from qubes.tests import QubesTestCase, SystemTestsMixin
|
||||||
from qubes.storage.xen import XenStorage
|
from qubes.tests.storage import TestVM
|
||||||
|
|
||||||
class TC_00_XenPool(QubesTestCase):
|
|
||||||
|
# :pylint: disable=invalid-name
|
||||||
|
|
||||||
|
|
||||||
|
class TC_00_XenPool(SystemTestsMixin, QubesTestCase):
|
||||||
|
|
||||||
""" This class tests some properties of the 'default' pool. """
|
""" This class tests some properties of the 'default' pool. """
|
||||||
|
|
||||||
@ -34,32 +42,166 @@ class TC_00_XenPool(QubesTestCase):
|
|||||||
.. sealso::
|
.. sealso::
|
||||||
Data :data:``qubes.qubes.defaults['pool_config']``.
|
Data :data:``qubes.qubes.defaults['pool_config']``.
|
||||||
"""
|
"""
|
||||||
vm = self._init_app_vm()
|
result = self.app.get_pool("default").dir_path
|
||||||
result = qubes.storage.get_pool("default", vm).dir_path
|
|
||||||
expected = '/var/lib/qubes'
|
expected = '/var/lib/qubes'
|
||||||
self.assertEquals(result, expected)
|
self.assertEquals(result, expected)
|
||||||
|
|
||||||
def test001_default_storage_class(self):
|
def test001_default_storage_class(self):
|
||||||
""" Check when using default pool the Storage is ``XenStorage``. """
|
""" Check when using default pool the Storage is ``Storage``. """
|
||||||
result = self._init_app_vm().storage
|
result = self._init_app_vm().storage
|
||||||
self.assertIsInstance(result, XenStorage)
|
self.assertIsInstance(result, Storage)
|
||||||
|
|
||||||
def test_002_default_pool_name(self):
|
|
||||||
""" Default pool_name is 'default'. """
|
|
||||||
vm = self._init_app_vm()
|
|
||||||
self.assertEquals(vm.pool_name, "default")
|
|
||||||
|
|
||||||
def _init_app_vm(self):
|
def _init_app_vm(self):
|
||||||
""" Return initalised, but not created, AppVm. """
|
""" Return initalised, but not created, AppVm. """
|
||||||
app = qubes.tests.storage.TestApp()
|
|
||||||
vmname = self.make_vm_name('appvm')
|
vmname = self.make_vm_name('appvm')
|
||||||
template = qubes.tests.storage.TestTemplateVM(app, 1,
|
self.init_default_template()
|
||||||
self.make_vm_name('template'), 'default')
|
return self.app.add_new_vm(qubes.vm.appvm.AppVM,
|
||||||
return qubes.tests.storage.TestVM(app, qid=2, name=vmname,
|
name=vmname,
|
||||||
template=template, pool_name='default')
|
template=self.app.default_template,
|
||||||
|
label='red')
|
||||||
|
|
||||||
|
|
||||||
|
class TC_01_XenVolumes(SystemTestsMixin, QubesTestCase):
|
||||||
|
POOL_DIR = '/var/lib/qubes/test-pool'
|
||||||
|
POOL_NAME = 'test-pool'
|
||||||
|
POOL_CONF = {'driver': 'xen', 'dir_path': POOL_DIR, 'name': POOL_NAME}
|
||||||
|
|
||||||
|
def setUp(self):
|
||||||
|
""" Add a test file based storage pool """
|
||||||
|
super(TC_01_XenVolumes, self).setUp()
|
||||||
|
self.init_default_template()
|
||||||
|
self.app.add_pool(**self.POOL_CONF)
|
||||||
|
|
||||||
|
def tearDown(self):
|
||||||
|
""" Remove the file based storage pool after testing """
|
||||||
|
self.app.remove_pool("test-pool")
|
||||||
|
super(TC_01_XenVolumes, self).tearDown()
|
||||||
|
shutil.rmtree(self.POOL_DIR, ignore_errors=True)
|
||||||
|
|
||||||
|
def test_000_origin_volume(self):
|
||||||
|
config = {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': self.POOL_NAME,
|
||||||
|
'volume_type': 'origin',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
}
|
||||||
|
vm = TestVM(self)
|
||||||
|
result = self.app.get_pool(self.POOL_NAME).init_volume(vm, config)
|
||||||
|
self.assertIsInstance(result, OriginFile)
|
||||||
|
self.assertEqual(result.name, 'root')
|
||||||
|
self.assertEqual(result.pool, self.POOL_NAME)
|
||||||
|
self.assertEqual(result.size, defaults['root_img_size'])
|
||||||
|
|
||||||
|
def test_001_snapshot_volume(self):
|
||||||
|
original_path = '/var/lib/qubes/vm-templates/fedora-23/root.img'
|
||||||
|
original_size = qubes.config.defaults['root_img_size']
|
||||||
|
config = {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'snapshot',
|
||||||
|
'vid': original_path,
|
||||||
|
}
|
||||||
|
vm = TestVM(self, template=self.app.default_template)
|
||||||
|
result = self.app.get_pool(self.POOL_NAME).init_volume(vm, config)
|
||||||
|
self.assertIsInstance(result, SnapshotFile)
|
||||||
|
self.assertEqual(result.name, 'root')
|
||||||
|
self.assertEqual(result.pool, 'default')
|
||||||
|
self.assertEqual(result.size, original_size)
|
||||||
|
|
||||||
|
def test_002_read_write_volume(self):
|
||||||
|
config = {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': self.POOL_NAME,
|
||||||
|
'volume_type': 'read-write',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
}
|
||||||
|
vm = TestVM(self)
|
||||||
|
result = self.app.get_pool(self.POOL_NAME).init_volume(vm, config)
|
||||||
|
self.assertIsInstance(result, ReadWriteFile)
|
||||||
|
self.assertEqual(result.name, 'root')
|
||||||
|
self.assertEqual(result.pool, self.POOL_NAME)
|
||||||
|
self.assertEqual(result.size, defaults['root_img_size'])
|
||||||
|
|
||||||
|
def test_003_read_volume(self):
|
||||||
|
template = self.app.default_template
|
||||||
|
original_path = template.volumes['root'].vid
|
||||||
|
original_size = qubes.config.defaults['root_img_size']
|
||||||
|
config = {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'read-only',
|
||||||
|
'vid': original_path
|
||||||
|
}
|
||||||
|
vm = TestVM(self, template=template)
|
||||||
|
|
||||||
|
result = self.app.get_pool(self.POOL_NAME).init_volume(vm, config)
|
||||||
|
self.assertIsInstance(result, ReadOnlyFile)
|
||||||
|
self.assertEqual(result.name, 'root')
|
||||||
|
self.assertEqual(result.pool, 'default')
|
||||||
|
self.assertEqual(result.size, original_size)
|
||||||
|
|
||||||
|
def test_004_volatile_volume(self):
|
||||||
|
config = {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': self.POOL_NAME,
|
||||||
|
'volume_type': 'volatile',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
}
|
||||||
|
vm = TestVM(self)
|
||||||
|
result = self.app.get_pool(self.POOL_NAME).init_volume(vm, config)
|
||||||
|
self.assertIsInstance(result, VolatileFile)
|
||||||
|
self.assertEqual(result.name, 'root')
|
||||||
|
self.assertEqual(result.pool, self.POOL_NAME)
|
||||||
|
self.assertEqual(result.size, defaults['root_img_size'])
|
||||||
|
|
||||||
|
def test_005_appvm_volumes(self):
|
||||||
|
''' Check if AppVM volumes are propertly initialized '''
|
||||||
|
vmname = self.make_vm_name('appvm')
|
||||||
|
vm = self.app.add_new_vm(qubes.vm.appvm.AppVM,
|
||||||
|
name=vmname,
|
||||||
|
template=self.app.default_template,
|
||||||
|
label='red')
|
||||||
|
|
||||||
|
volumes = vm.volumes
|
||||||
|
self.assertIsInstance(volumes['root'], SnapshotFile)
|
||||||
|
self.assertIsInstance(volumes['private'], ReadWriteFile)
|
||||||
|
self.assertIsInstance(volumes['volatile'], VolatileFile)
|
||||||
|
expected = vm.template.dir_path + '/root.img:' + vm.template.dir_path \
|
||||||
|
+ '/root-cow.img'
|
||||||
|
self.assertVolumePath(vm, 'root', expected, rw=False)
|
||||||
|
expected = vm.dir_path + '/private.img'
|
||||||
|
self.assertVolumePath(vm, 'private', expected, rw=True)
|
||||||
|
expected = vm.dir_path + '/volatile.img'
|
||||||
|
self.assertVolumePath(vm, 'volatile', expected, rw=True)
|
||||||
|
|
||||||
|
def test_006_template_volumes(self):
|
||||||
|
''' Check if TemplateVM volumes are propertly initialized '''
|
||||||
|
vmname = self.make_vm_name('appvm')
|
||||||
|
vm = self.app.add_new_vm(qubes.vm.templatevm.TemplateVM,
|
||||||
|
name=vmname,
|
||||||
|
label='red')
|
||||||
|
|
||||||
|
volumes = vm.volumes
|
||||||
|
self.assertIsInstance(volumes['root'], OriginFile)
|
||||||
|
self.assertIsInstance(volumes['private'], ReadWriteFile)
|
||||||
|
self.assertIsInstance(volumes['volatile'], VolatileFile)
|
||||||
|
expected = vm.dir_path + '/root.img:' + vm.dir_path + '/root-cow.img'
|
||||||
|
self.assertVolumePath(vm, 'root', expected, rw=True)
|
||||||
|
expected = vm.dir_path + '/private.img'
|
||||||
|
self.assertVolumePath(vm, 'private', expected, rw=True)
|
||||||
|
expected = vm.dir_path + '/volatile.img'
|
||||||
|
self.assertVolumePath(vm, 'volatile', expected, rw=True)
|
||||||
|
|
||||||
|
def assertVolumePath(self, vm, dev_name, expected, rw=True):
|
||||||
|
# :pylint: disable=invalid-name
|
||||||
|
volumes = vm.volumes
|
||||||
|
b_dev = volumes[dev_name].block_device()
|
||||||
|
self.assertEqual(b_dev.rw, rw)
|
||||||
|
self.assertEquals(b_dev.path, expected)
|
||||||
|
|
||||||
|
|
||||||
@qubes.tests.skipUnlessDom0
|
@qubes.tests.skipUnlessDom0
|
||||||
class TC_01_XenPool(QubesTestCase):
|
class TC_03_XenPool(SystemTestsMixin, QubesTestCase):
|
||||||
|
|
||||||
""" Test the paths for the default Xen file based storage (``XenStorage``).
|
""" Test the paths for the default Xen file based storage (``XenStorage``).
|
||||||
"""
|
"""
|
||||||
@ -68,172 +210,124 @@ class TC_01_XenPool(QubesTestCase):
|
|||||||
APPVMS_DIR = '/var/lib/qubes/test-pool/appvms'
|
APPVMS_DIR = '/var/lib/qubes/test-pool/appvms'
|
||||||
TEMPLATES_DIR = '/var/lib/qubes/test-pool/vm-templates'
|
TEMPLATES_DIR = '/var/lib/qubes/test-pool/vm-templates'
|
||||||
SERVICE_DIR = '/var/lib/qubes/test-pool/servicevms'
|
SERVICE_DIR = '/var/lib/qubes/test-pool/servicevms'
|
||||||
|
POOL_NAME = 'test-pool'
|
||||||
|
POOL_CONFIG = {'driver': 'xen', 'dir_path': POOL_DIR, 'name': POOL_NAME}
|
||||||
|
|
||||||
def setUp(self):
|
def setUp(self):
|
||||||
""" Add a test file based storage pool """
|
""" Add a test file based storage pool """
|
||||||
super(TC_01_XenPool, self).setUp()
|
super(TC_03_XenPool, self).setUp()
|
||||||
qubes.storage.add_pool('test-pool', driver='xen',
|
self.init_default_template()
|
||||||
dir_path=self.POOL_DIR)
|
self.app.add_pool(**self.POOL_CONFIG)
|
||||||
self.app = qubes.tests.storage.TestApp()
|
|
||||||
self.template = qubes.tests.storage.TestTemplateVM(self.app, 1,
|
|
||||||
self.make_vm_name('template'), 'default')
|
|
||||||
|
|
||||||
|
|
||||||
def tearDown(self):
|
def tearDown(self):
|
||||||
""" Remove the file based storage pool after testing """
|
""" Remove the file based storage pool after testing """
|
||||||
super(TC_01_XenPool, self).tearDown()
|
self.app.remove_pool("test-pool")
|
||||||
qubes.storage.remove_pool("test-pool")
|
super(TC_03_XenPool, self).tearDown()
|
||||||
shutil.rmtree(self.POOL_DIR, ignore_errors=True)
|
shutil.rmtree(self.POOL_DIR, ignore_errors=True)
|
||||||
|
|
||||||
def test_001_pool_exists(self):
|
def test_001_pool_exists(self):
|
||||||
""" Check if the storage pool was added to the storage pool config """
|
""" Check if the storage pool was added to the storage pool config """
|
||||||
self.assertTrue(qubes.storage.pool_exists('test-pool'))
|
self.assertIn('test-pool', self.app.pools.keys())
|
||||||
|
|
||||||
def test_002_pool_dir_create(self):
|
def test_002_pool_dir_create(self):
|
||||||
""" Check if the storage pool dir and subdirs were created """
|
""" Check if the storage pool dir and subdirs were created """
|
||||||
|
|
||||||
# The dir should not exists before
|
# The dir should not exists before
|
||||||
self.assertFalse(os.path.exists(self.POOL_DIR))
|
pool_name = 'foo'
|
||||||
|
pool_dir = '/tmp/foo'
|
||||||
|
appvms_dir = '/tmp/foo/appvms'
|
||||||
|
templates_dir = '/tmp/foo/vm-templates'
|
||||||
|
|
||||||
vmname = self.make_vm_name('appvm')
|
self.assertFalse(os.path.exists(pool_dir))
|
||||||
qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
|
|
||||||
self.assertTrue(os.path.exists(self.POOL_DIR))
|
self.app.add_pool(name=pool_name, dir_path=pool_dir, driver='xen')
|
||||||
self.assertTrue(os.path.exists(self.APPVMS_DIR))
|
|
||||||
self.assertTrue(os.path.exists(self.SERVICE_DIR))
|
|
||||||
self.assertTrue(os.path.exists(self.TEMPLATES_DIR))
|
|
||||||
|
|
||||||
def test_003_pool_dir(self):
|
self.assertTrue(os.path.exists(pool_dir))
|
||||||
""" Check if the vm storage pool_dir is the same as specified """
|
self.assertTrue(os.path.exists(appvms_dir))
|
||||||
vmname = self.make_vm_name('appvm')
|
self.assertTrue(os.path.exists(templates_dir))
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
result = qubes.storage.get_pool('test-pool', vm).dir_path
|
|
||||||
self.assertEquals(self.POOL_DIR, result)
|
|
||||||
|
|
||||||
def test_004_app_vmdir(self):
|
shutil.rmtree(pool_dir, ignore_errors=True)
|
||||||
""" Check the vm storage dir for an AppVm"""
|
|
||||||
vmname = self.make_vm_name('appvm')
|
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
|
|
||||||
expected = os.path.join(self.APPVMS_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
def test_005_hvm_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a HVM"""
|
|
||||||
vmname = self.make_vm_name('hvm')
|
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
vm.hvm = True
|
|
||||||
|
|
||||||
expected = os.path.join(self.APPVMS_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
@unittest.skip('TODO - servicevms dir?')
|
|
||||||
def test_006_net_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a Netvm"""
|
|
||||||
vmname = self.make_vm_name('hvm')
|
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
|
|
||||||
expected = os.path.join(self.SERVICE_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
@unittest.skip('TODO - servicevms dir?')
|
|
||||||
def test_007_proxy_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a ProxyVm"""
|
|
||||||
vmname = self.make_vm_name('proxyvm')
|
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
template=self.template, pool_name='test-pool')
|
|
||||||
|
|
||||||
expected = os.path.join(self.SERVICE_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
def test_008_admin_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a AdminVm"""
|
|
||||||
# TODO How to test AdminVm?
|
|
||||||
pass
|
|
||||||
|
|
||||||
def test_009_template_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a TemplateVm"""
|
|
||||||
vmname = self.make_vm_name('templatevm')
|
|
||||||
vm = qubes.tests.storage.TestTemplateVM(self.app, qid=2, name=vmname,
|
|
||||||
pool_name='test-pool')
|
|
||||||
|
|
||||||
expected = os.path.join(self.TEMPLATES_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
def test_010_template_hvm_vmdir(self):
|
|
||||||
""" Check the vm storage dir for a TemplateHVm"""
|
|
||||||
vmname = self.make_vm_name('templatehvm')
|
|
||||||
vm = qubes.tests.storage.TestTemplateVM(self.app, qid=2, name=vmname,
|
|
||||||
pool_name='test-pool')
|
|
||||||
|
|
||||||
expected = os.path.join(self.TEMPLATES_DIR, vm.name)
|
|
||||||
result = vm.storage.vmdir
|
|
||||||
self.assertEquals(expected, result)
|
|
||||||
|
|
||||||
def test_011_appvm_file_images(self):
|
def test_011_appvm_file_images(self):
|
||||||
""" Check if all the needed image files are created for an AppVm"""
|
""" Check if all the needed image files are created for an AppVm"""
|
||||||
|
|
||||||
vmname = self.make_vm_name('appvm')
|
vmname = self.make_vm_name('appvm')
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
vm = self.app.add_new_vm(qubes.vm.appvm.AppVM,
|
||||||
pool_name='test-pool')
|
name=vmname,
|
||||||
|
template=self.app.default_template,
|
||||||
|
volume_config={
|
||||||
|
'private': {
|
||||||
|
'pool': 'test-pool'
|
||||||
|
},
|
||||||
|
'volatile': {
|
||||||
|
'pool': 'test-pool'
|
||||||
|
}
|
||||||
|
},
|
||||||
|
label='red')
|
||||||
vm.storage.create_on_disk()
|
vm.storage.create_on_disk()
|
||||||
|
|
||||||
expected_vmdir = os.path.join(self.APPVMS_DIR, vm.name)
|
expected_vmdir = os.path.join(self.APPVMS_DIR, vm.name)
|
||||||
self.assertEqualsAndExists(vm.storage.vmdir, expected_vmdir)
|
|
||||||
|
|
||||||
expected_private_path = os.path.join(expected_vmdir, 'private.img')
|
expected_private_path = os.path.join(expected_vmdir, 'private.img')
|
||||||
self.assertEqualsAndExists(vm.storage.private_img,
|
self.assertEqualsAndExists(vm.volumes['private'].path,
|
||||||
expected_private_path)
|
expected_private_path)
|
||||||
|
|
||||||
expected_volatile_path = os.path.join(expected_vmdir, 'volatile.img')
|
expected_volatile_path = os.path.join(expected_vmdir, 'volatile.img')
|
||||||
self.assertEqualsAndExists(vm.storage.volatile_img,
|
self.assertEqualsAndExists(vm.volumes['volatile'].path,
|
||||||
expected_volatile_path)
|
expected_volatile_path)
|
||||||
|
|
||||||
def test_012_hvm_file_images(self):
|
def test_013_template_file_images(self):
|
||||||
""" Check if all the needed image files are created for a HVm"""
|
""" Check if root.img, private.img, volatile.img and root-cow.img are
|
||||||
|
created propertly by the storage system
|
||||||
|
"""
|
||||||
|
vmname = self.make_vm_name('tmvm')
|
||||||
|
vm = self.app.add_new_vm(qubes.vm.templatevm.TemplateVM,
|
||||||
|
name=vmname,
|
||||||
|
volume_config={
|
||||||
|
'root': {
|
||||||
|
'pool': 'test-pool'
|
||||||
|
},
|
||||||
|
'private': {
|
||||||
|
'pool': 'test-pool'
|
||||||
|
},
|
||||||
|
'volatile': {
|
||||||
|
'pool': 'test-pool'
|
||||||
|
}
|
||||||
|
},
|
||||||
|
label='red')
|
||||||
|
vm.create_on_disk()
|
||||||
|
|
||||||
vmname = self.make_vm_name('hvm')
|
expected_vmdir = os.path.join(self.TEMPLATES_DIR, vm.name)
|
||||||
vm = qubes.tests.storage.TestVM(self.app, qid=2, name=vmname,
|
|
||||||
pool_name='test-pool')
|
|
||||||
vm.hvm = True
|
|
||||||
vm.storage.create_on_disk()
|
|
||||||
|
|
||||||
expected_vmdir = os.path.join(self.APPVMS_DIR, vm.name)
|
expected_root_origin_path = os.path.join(expected_vmdir, 'root.img')
|
||||||
self.assertEqualsAndExists(vm.storage.vmdir, expected_vmdir)
|
expected_root_cow_path = os.path.join(expected_vmdir, 'root-cow.img')
|
||||||
|
expected_root_path = '%s:%s' % (expected_root_origin_path,
|
||||||
|
expected_root_cow_path)
|
||||||
|
self.assertEquals(vm.volumes['root'].path, expected_root_path)
|
||||||
|
self.assertExist(vm.volumes['root'].path_origin)
|
||||||
|
|
||||||
expected_private_path = os.path.join(expected_vmdir, 'private.img')
|
expected_private_path = os.path.join(expected_vmdir, 'private.img')
|
||||||
self.assertEqualsAndExists(vm.storage.private_img,
|
self.assertEqualsAndExists(vm.volumes['private'].path,
|
||||||
expected_private_path)
|
expected_private_path)
|
||||||
|
|
||||||
expected_root_path = os.path.join(expected_vmdir, 'root.img')
|
|
||||||
self.assertEqualsAndExists(vm.storage.root_img, expected_root_path)
|
|
||||||
|
|
||||||
expected_volatile_path = os.path.join(expected_vmdir, 'volatile.img')
|
expected_volatile_path = os.path.join(expected_vmdir, 'volatile.img')
|
||||||
self.assertEqualsAndExists(vm.storage.volatile_img,
|
self.assertEqualsAndExists(vm.volumes['volatile'].path,
|
||||||
expected_volatile_path)
|
expected_volatile_path)
|
||||||
|
|
||||||
@unittest.skip('test not implemented') # TODO
|
vm.storage.commit_template_changes()
|
||||||
def test_013_template_based_file_images(self):
|
expected_rootcow_path = os.path.join(expected_vmdir, 'root-cow.img')
|
||||||
pass
|
self.assertEqualsAndExists(vm.volumes['root'].path_cow,
|
||||||
|
expected_rootcow_path)
|
||||||
|
|
||||||
def assertEqualsAndExists(self, result_path, expected_path):
|
def assertEqualsAndExists(self, result_path, expected_path):
|
||||||
""" Check if the ``result_path``, matches ``expected_path`` and exists.
|
""" Check if the ``result_path``, matches ``expected_path`` and exists.
|
||||||
|
|
||||||
See also: :meth:``assertExist``
|
See also: :meth:``assertExist``
|
||||||
"""
|
"""
|
||||||
|
# :pylint: disable=invalid-name
|
||||||
self.assertEquals(result_path, expected_path)
|
self.assertEquals(result_path, expected_path)
|
||||||
self.assertExist(result_path)
|
self.assertExist(result_path)
|
||||||
|
|
||||||
def assertExist(self, path):
|
def assertExist(self, path):
|
||||||
""" Assert that the given path exists. """
|
""" Assert that the given path exists. """
|
||||||
self.assertTrue(os.path.exists(path))
|
# :pylint: disable=invalid-name
|
||||||
|
self.assertTrue(os.path.exists(path), "Path %s does not exist" % path)
|
||||||
|
@ -46,9 +46,10 @@ parser.add_argument('--property', '--prop', '-p',
|
|||||||
action=qubes.tools.PropertyAction,
|
action=qubes.tools.PropertyAction,
|
||||||
help='set domain\'s property, like "internal", "memory" or "vcpus"')
|
help='set domain\'s property, like "internal", "memory" or "vcpus"')
|
||||||
|
|
||||||
parser.add_argument('--pool-name', '--pool', '-P',
|
parser.add_argument('--pool', '-P',
|
||||||
action=qubes.tools.SinglePropertyAction,
|
action='append',
|
||||||
help='specify the storage pool to use')
|
metavar='POOL_NAME:VOLUME_NAME',
|
||||||
|
help='specify the pool to use for a volume')
|
||||||
|
|
||||||
parser.add_argument('--template', '-t',
|
parser.add_argument('--template', '-t',
|
||||||
action=qubes.tools.SinglePropertyAction,
|
action=qubes.tools.SinglePropertyAction,
|
||||||
@ -79,6 +80,17 @@ parser.add_argument('name', metavar='VMNAME',
|
|||||||
def main(args=None):
|
def main(args=None):
|
||||||
args = parser.parse_args(args)
|
args = parser.parse_args(args)
|
||||||
|
|
||||||
|
if args.pool:
|
||||||
|
args.properties['volume_config'] = {}
|
||||||
|
for pool_vol in args.pool:
|
||||||
|
try:
|
||||||
|
pool_name, volume_name = pool_vol.split(':')
|
||||||
|
config = {'pool': pool_name, 'name': volume_name}
|
||||||
|
args.properties['volume_config'][volume_name] = config
|
||||||
|
except ValueError:
|
||||||
|
parser.error(
|
||||||
|
'Pool argument must be of form: -P pool_name:volume_name')
|
||||||
|
|
||||||
if 'label' not in args.properties:
|
if 'label' not in args.properties:
|
||||||
parser.error('--label option is mandatory')
|
parser.error('--label option is mandatory')
|
||||||
|
|
||||||
|
@ -3,16 +3,44 @@
|
|||||||
|
|
||||||
import qubes.events
|
import qubes.events
|
||||||
import qubes.vm.qubesvm
|
import qubes.vm.qubesvm
|
||||||
|
from qubes.config import defaults
|
||||||
|
|
||||||
|
|
||||||
class AppVM(qubes.vm.qubesvm.QubesVM):
|
class AppVM(qubes.vm.qubesvm.QubesVM):
|
||||||
'''Application VM'''
|
'''Application VM'''
|
||||||
|
|
||||||
template = qubes.VMProperty('template', load_stage=4,
|
template = qubes.VMProperty('template',
|
||||||
|
load_stage=4,
|
||||||
vmclass=qubes.vm.templatevm.TemplateVM,
|
vmclass=qubes.vm.templatevm.TemplateVM,
|
||||||
ls_width=31,
|
ls_width=31,
|
||||||
doc='Template, on which this AppVM is based.')
|
doc='Template, on which this AppVM is based.')
|
||||||
|
|
||||||
def __init__(self, *args, **kwargs):
|
def __init__(self, *args, **kwargs):
|
||||||
|
self.volumes = {}
|
||||||
|
self.volume_config = {
|
||||||
|
'root': {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'snapshot',
|
||||||
|
},
|
||||||
|
'private': {
|
||||||
|
'name': 'private',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'read-write',
|
||||||
|
'size': defaults['private_img_size'],
|
||||||
|
},
|
||||||
|
'volatile': {
|
||||||
|
'name': 'volatile',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'volatile',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
},
|
||||||
|
'kernel': {
|
||||||
|
'name': 'kernel',
|
||||||
|
'pool': 'linux-kernel',
|
||||||
|
'volume_type': 'read-only',
|
||||||
|
}
|
||||||
|
}
|
||||||
super(AppVM, self).__init__(*args, **kwargs)
|
super(AppVM, self).__init__(*args, **kwargs)
|
||||||
|
|
||||||
@qubes.events.handler('domain-load')
|
@qubes.events.handler('domain-load')
|
||||||
|
@ -29,6 +29,7 @@ from __future__ import absolute_import
|
|||||||
import base64
|
import base64
|
||||||
import datetime
|
import datetime
|
||||||
import itertools
|
import itertools
|
||||||
|
import lxml
|
||||||
import os
|
import os
|
||||||
import os.path
|
import os.path
|
||||||
import re
|
import re
|
||||||
@ -209,7 +210,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
default='default',
|
default='default',
|
||||||
doc='storage pool for this qube devices')
|
doc='storage pool for this qube devices')
|
||||||
|
|
||||||
dir_path = property((lambda self: self.storage.vmdir),
|
dir_path = property( (lambda self: os.path.join(qubes.config.system_path['qubes_base_dir'], self.dir_path_prefix, self.name)),
|
||||||
doc='Root directory for files related to this domain')
|
doc='Root directory for files related to this domain')
|
||||||
|
|
||||||
# XXX swallowed uses_default_kernel
|
# XXX swallowed uses_default_kernel
|
||||||
@ -331,6 +332,12 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
raise
|
raise
|
||||||
return self._libvirt_domain
|
return self._libvirt_domain
|
||||||
|
|
||||||
|
@property
|
||||||
|
def block_devices(self):
|
||||||
|
''' Return all :py:class:`qubes.devices.BlockDevice`s for current domain
|
||||||
|
for serialization in the libvirt XML template as <disk>.
|
||||||
|
'''
|
||||||
|
return [v.block_device() for v in self.volumes.values()]
|
||||||
|
|
||||||
@property
|
@property
|
||||||
def qdb(self):
|
def qdb(self):
|
||||||
@ -347,21 +354,27 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
def private_img(self):
|
def private_img(self):
|
||||||
'''Location of private image of the VM (that contains :file:`/rw` \
|
'''Location of private image of the VM (that contains :file:`/rw` \
|
||||||
and :file:`/home`).'''
|
and :file:`/home`).'''
|
||||||
return self.storage.private_img
|
warnings.warn("volatile_img is deprecated, use volumes['private'].vid",
|
||||||
|
DeprecationWarning)
|
||||||
|
return self.volumes['private'].vid
|
||||||
|
|
||||||
|
|
||||||
# XXX this should go to to AppVM? or TemplateVM?
|
# XXX this should go to to AppVM? or TemplateVM?
|
||||||
@property
|
@property
|
||||||
def root_img(self):
|
def root_img(self):
|
||||||
'''Location of root image.'''
|
'''Location of root image.'''
|
||||||
return self.storage.root_img
|
warnings.warn("root_img is deprecated, use volumes['root'].vid",
|
||||||
|
DeprecationWarning)
|
||||||
|
return self.volumes['root'].vid
|
||||||
|
|
||||||
|
|
||||||
# XXX and this should go to exactly where? DispVM has it.
|
# XXX and this should go to exactly where? DispVM has it.
|
||||||
@property
|
@property
|
||||||
def volatile_img(self):
|
def volatile_img(self):
|
||||||
'''Volatile image that overlays :py:attr:`root_img`.'''
|
'''Volatile image that overlays :py:attr:`root_img`.'''
|
||||||
return self.storage.volatile_img
|
warnings.warn("volatile_img is deprecated, use volumes['volatile'].vid",
|
||||||
|
DeprecationWarning)
|
||||||
|
return self.volumes['volatile'].vid
|
||||||
|
|
||||||
|
|
||||||
# XXX shouldn't this go elsewhere?
|
# XXX shouldn't this go elsewhere?
|
||||||
@ -419,8 +432,23 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
# constructor
|
# constructor
|
||||||
#
|
#
|
||||||
|
|
||||||
def __init__(self, app, xml, **kwargs):
|
def __init__(self, app, xml, volume_config={}, **kwargs):
|
||||||
super(QubesVM, self).__init__(app, xml, **kwargs)
|
super(QubesVM, self).__init__(app, xml, **kwargs)
|
||||||
|
if hasattr(self, 'volume_config'):
|
||||||
|
if xml is not None:
|
||||||
|
for node in xml.xpath('volume-config/volume'):
|
||||||
|
name = node.get('name')
|
||||||
|
assert name
|
||||||
|
for k, v in node.items():
|
||||||
|
self.volume_config[name][k] = v
|
||||||
|
|
||||||
|
for name, conf in volume_config.items():
|
||||||
|
for k, v in conf.items():
|
||||||
|
self.volume_config[name][k] = v
|
||||||
|
elif volume_config:
|
||||||
|
raise TypeError(
|
||||||
|
'volume_config specified, but {} did not expect that.' %
|
||||||
|
self.__class__.__name__)
|
||||||
|
|
||||||
import qubes.vm.adminvm # pylint: disable=redefined-outer-name
|
import qubes.vm.adminvm # pylint: disable=redefined-outer-name
|
||||||
|
|
||||||
@ -458,13 +486,23 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
self.features['check-updates'] = None
|
self.features['check-updates'] = None
|
||||||
|
|
||||||
# will be initialized after loading all the properties
|
# will be initialized after loading all the properties
|
||||||
self.storage = None
|
|
||||||
|
|
||||||
# fire hooks
|
# fire hooks
|
||||||
if xml is None:
|
if xml is None:
|
||||||
self.events_enabled = True
|
self.events_enabled = True
|
||||||
self.fire_event('domain-init')
|
self.fire_event('domain-init')
|
||||||
|
|
||||||
|
def __xml__(self):
|
||||||
|
element = super(QubesVM, self).__xml__()
|
||||||
|
if hasattr(self, 'volumes'):
|
||||||
|
volume_config_node = lxml.etree.Element('volume-config')
|
||||||
|
for volume in self.volumes.values():
|
||||||
|
volume_config_node.append(volume.__xml__())
|
||||||
|
|
||||||
|
element.append(volume_config_node)
|
||||||
|
|
||||||
|
|
||||||
|
return element
|
||||||
|
|
||||||
#
|
#
|
||||||
# event handlers
|
# event handlers
|
||||||
@ -477,8 +515,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
self.uuid = uuid.uuid4()
|
self.uuid = uuid.uuid4()
|
||||||
|
|
||||||
# Initialize VM image storage class
|
# Initialize VM image storage class
|
||||||
self.storage = qubes.storage.get_pool(
|
self.storage = qubes.storage.Storage(self)
|
||||||
self.pool_name, self).get_storage()
|
|
||||||
|
|
||||||
|
|
||||||
@qubes.events.handler('property-set:label')
|
@qubes.events.handler('property-set:label')
|
||||||
@ -532,18 +569,18 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
self._qdb_connection.close()
|
self._qdb_connection.close()
|
||||||
self._qdb_connection = None
|
self._qdb_connection = None
|
||||||
|
|
||||||
self.storage.rename(
|
self.storage.rename(old_name, new_name)
|
||||||
os.path.join(qubes.config.system_path['qubes_base_dir'],
|
|
||||||
self.dir_path_prefix, new_name),
|
prefix = os.path.join(qubes.config.system_path['qubes_base_dir'], self.dir_path_prefix)
|
||||||
os.path.join(qubes.config.system_path['qubes_base_dir'],
|
old_config = os.path.join(prefix, old_name, old_name + '.conf')
|
||||||
self.dir_path_prefix, old_name))
|
new_config = os.path.join(prefix, new_name, new_name + '.conf')
|
||||||
|
os.rename(old_config, new_config)
|
||||||
|
|
||||||
self._update_libvirt_domain()
|
self._update_libvirt_domain()
|
||||||
|
|
||||||
if self.autostart:
|
if self.autostart:
|
||||||
self.autostart = self.autostart
|
self.autostart = self.autostart
|
||||||
|
|
||||||
|
|
||||||
@qubes.events.handler('property-pre-set:autostart')
|
@qubes.events.handler('property-pre-set:autostart')
|
||||||
def on_property_pre_set_autostart(self, event, prop, name, value,
|
def on_property_pre_set_autostart(self, event, prop, name, value,
|
||||||
oldvalue=None):
|
oldvalue=None):
|
||||||
@ -633,7 +670,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
self.netvm.start(start_guid=start_guid,
|
self.netvm.start(start_guid=start_guid,
|
||||||
notify_function=notify_function)
|
notify_function=notify_function)
|
||||||
|
|
||||||
self.storage.prepare_for_vm_startup()
|
self.storage.start()
|
||||||
self._update_libvirt_domain()
|
self._update_libvirt_domain()
|
||||||
|
|
||||||
qmemman_client = self.request_memory(mem_required)
|
qmemman_client = self.request_memory(mem_required)
|
||||||
@ -725,6 +762,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
exc_info=1)
|
exc_info=1)
|
||||||
|
|
||||||
self.libvirt_domain.shutdown()
|
self.libvirt_domain.shutdown()
|
||||||
|
self.storage.stop()
|
||||||
|
|
||||||
|
|
||||||
def kill(self):
|
def kill(self):
|
||||||
@ -738,6 +776,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
raise qubes.exc.QubesVMNotStartedError(self)
|
raise qubes.exc.QubesVMNotStartedError(self)
|
||||||
|
|
||||||
self.libvirt_domain.destroy()
|
self.libvirt_domain.destroy()
|
||||||
|
self.storage.stop()
|
||||||
|
|
||||||
|
|
||||||
def force_shutdown(self, *args, **kwargs):
|
def force_shutdown(self, *args, **kwargs):
|
||||||
@ -1021,7 +1060,7 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
p.communicate(input=self.default_user)
|
p.communicate(input=self.default_user)
|
||||||
|
|
||||||
|
|
||||||
# TODO move to storage
|
# TODO rename to create
|
||||||
def create_on_disk(self, source_template=None):
|
def create_on_disk(self, source_template=None):
|
||||||
'''Create files needed for VM.
|
'''Create files needed for VM.
|
||||||
|
|
||||||
@ -1050,11 +1089,11 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
def resize_private_img(self, size):
|
def resize_private_img(self, size):
|
||||||
'''Resize private image.'''
|
'''Resize private image.'''
|
||||||
|
|
||||||
if size >= self.get_private_img_sz():
|
warnings.warn(
|
||||||
raise qubes.exc.QubesValueError('Cannot shrink private.img')
|
"resize_private_img is deprecated, use volumes[name].resize()",
|
||||||
|
DeprecationWarning)
|
||||||
|
|
||||||
# resize the image
|
self.volumes['private'].resize(size)
|
||||||
self.storage.resize_private_img(size)
|
|
||||||
|
|
||||||
# and then the filesystem
|
# and then the filesystem
|
||||||
# FIXME move this to qubes.storage.xen.XenVMStorage
|
# FIXME move this to qubes.storage.xen.XenVMStorage
|
||||||
@ -1070,29 +1109,12 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
if retcode != 0:
|
if retcode != 0:
|
||||||
raise qubes.exc.QubesException('resize2fs failed')
|
raise qubes.exc.QubesException('resize2fs failed')
|
||||||
|
|
||||||
|
|
||||||
# TODO move to storage
|
|
||||||
def resize_root_img(self, size, allow_start=False):
|
def resize_root_img(self, size, allow_start=False):
|
||||||
if hasattr(self, 'template'):
|
warnings.warn(
|
||||||
raise qubes.exc.QubesVMError(self,
|
"resize_root_img is deprecated, use volumes[name].resize()",
|
||||||
'Cannot resize root.img of template based qube. Resize the'
|
DeprecationWarning)
|
||||||
' root.img of the template instead.')
|
|
||||||
|
|
||||||
# TODO self.is_halted
|
self.volumes['root'].resize(size)
|
||||||
if self.is_running():
|
|
||||||
raise qubes.exc.QubesVMNotHaltedError(self,
|
|
||||||
'Cannot resize root.img of a running qube')
|
|
||||||
|
|
||||||
if size < self.get_root_img_sz():
|
|
||||||
raise qubes.exc.QubesValueError(
|
|
||||||
'For your own safety, shrinking of root.img is disabled. If you'
|
|
||||||
' really know what you are doing, use `truncate` manually.')
|
|
||||||
|
|
||||||
with open(self.root_img, 'a+b') as fd:
|
|
||||||
fd.truncate(size)
|
|
||||||
|
|
||||||
if False: #self.hvm:
|
|
||||||
return
|
|
||||||
|
|
||||||
if not allow_start:
|
if not allow_start:
|
||||||
raise qubes.exc.QubesException(
|
raise qubes.exc.QubesException(
|
||||||
@ -1111,12 +1133,11 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
while self.is_running(): #1696
|
while self.is_running(): #1696
|
||||||
time.sleep(1)
|
time.sleep(1)
|
||||||
|
|
||||||
|
|
||||||
def remove_from_disk(self):
|
def remove_from_disk(self):
|
||||||
'''Remove domain remnants from disk.'''
|
'''Remove domain remnants from disk.'''
|
||||||
self.fire_event('domain-remove-from-disk')
|
self.fire_event('domain-remove-from-disk')
|
||||||
self.storage.remove_from_disk()
|
self.storage.remove()
|
||||||
|
shutil.rmtree(self.vm.dir_path)
|
||||||
|
|
||||||
def clone_disk_files(self, src):
|
def clone_disk_files(self, src):
|
||||||
'''Clone files from other vm.
|
'''Clone files from other vm.
|
||||||
@ -1128,7 +1149,10 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
raise qubes.exc.QubesVMNotHaltedError(
|
raise qubes.exc.QubesVMNotHaltedError(
|
||||||
self, 'Cannot clone a running domain {!r}'.format(self.name))
|
self, 'Cannot clone a running domain {!r}'.format(self.name))
|
||||||
|
|
||||||
self.storage.clone_disk_files(src)
|
if hasattr(src, 'volume_config'):
|
||||||
|
self.volume_config = src.volume_config
|
||||||
|
self.storage = qubes.storage.Storage(self)
|
||||||
|
self.storage.clone(src)
|
||||||
|
|
||||||
if src.icon_path is not None \
|
if src.icon_path is not None \
|
||||||
and os.path.exists(src.dir_path) \
|
and os.path.exists(src.dir_path) \
|
||||||
@ -1450,68 +1474,69 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
|
|
||||||
# XXX shouldn't this go only to vms that have root image?
|
# XXX shouldn't this go only to vms that have root image?
|
||||||
def get_disk_utilization_root_img(self):
|
def get_disk_utilization_root_img(self):
|
||||||
'''Get space that is actually ocuppied by :py:attr:`root_img`.
|
'''Get space that is actually ocuppied by :py:attr:`volumes['root']`.
|
||||||
|
|
||||||
Root image is a sparse file, so it is probably much less than logical
|
|
||||||
available space.
|
|
||||||
|
|
||||||
|
This is a temporary wrapper for backwards compatibility. You should
|
||||||
|
call directly :py:attr:`volumes[name].utilization`
|
||||||
:returns: domain's real disk image size [FIXME unit]
|
:returns: domain's real disk image size [FIXME unit]
|
||||||
:rtype: FIXME
|
:rtype: FIXME
|
||||||
|
|
||||||
.. seealso:: :py:meth:`get_root_img_sz`
|
.. seealso:: :py:meth:`get_root_img_sz`
|
||||||
'''
|
'''
|
||||||
|
|
||||||
return qubes.storage.get_disk_usage(self.root_img)
|
warnings.warn(
|
||||||
|
"get_disk_utilization_root_img is deprecated, use volumes['root'].utilization",
|
||||||
|
DeprecationWarning)
|
||||||
|
return qubes.storage.get_disk_usage(self.volumes['root'].utilization)
|
||||||
|
|
||||||
|
|
||||||
# XXX shouldn't this go only to vms that have root image?
|
# XXX shouldn't this go only to vms that have root image?
|
||||||
def get_root_img_sz(self):
|
def get_root_img_sz(self):
|
||||||
'''Get image size of :py:attr:`root_img`.
|
'''Get the size of the :py:attr:`volumes['root']`.
|
||||||
|
|
||||||
Root image is a sparse file, so it is probably much more than ocuppied
|
|
||||||
physical space.
|
|
||||||
|
|
||||||
|
This is a temporary wrapper for backwards compatibility. You should
|
||||||
|
call directly :py:attr:`volumes[name].size`
|
||||||
:returns: domain's virtual disk size [FIXME unit]
|
:returns: domain's virtual disk size [FIXME unit]
|
||||||
:rtype: FIXME
|
:rtype: FIXME
|
||||||
|
|
||||||
.. seealso:: :py:meth:`get_disk_utilization_root_img`
|
.. seealso:: :py:meth:`get_disk_utilization_root_img`
|
||||||
'''
|
'''
|
||||||
|
|
||||||
if not os.path.exists(self.root_img):
|
warnings.warn(
|
||||||
return 0
|
"get_disk_root_img_sz is deprecated, use volumes['root'].size",
|
||||||
|
DeprecationWarning)
|
||||||
return os.path.getsize(self.root_img)
|
return qubes.storage.get_disk_usage(self.volumes['root'].size)
|
||||||
|
|
||||||
|
|
||||||
def get_disk_utilization_private_img(self):
|
def get_disk_utilization_private_img(self):
|
||||||
'''Get space that is actually ocuppied by :py:attr:`private_img`.
|
'''Get space that is actually ocuppied by :py:attr:`volumes['private']`.
|
||||||
|
|
||||||
Private image is a sparse file, so it is probably much less than
|
|
||||||
logical available space.
|
|
||||||
|
|
||||||
|
This is a temporary wrapper for backwards compatibility. You should
|
||||||
|
call directly :py:attr:`volumes[name].utilization`
|
||||||
:returns: domain's real disk image size [FIXME unit]
|
:returns: domain's real disk image size [FIXME unit]
|
||||||
:rtype: FIXME
|
:rtype: FIXME
|
||||||
|
'''
|
||||||
|
|
||||||
.. seealso:: :py:meth:`get_private_img_sz`
|
warnings.warn(
|
||||||
''' # pylint: disable=invalid-name
|
"get_disk_utilization_private_img is deprecated, use volumes['private'].utilization",
|
||||||
|
DeprecationWarning)
|
||||||
return qubes.storage.get_disk_usage(self.private_img)
|
return qubes.storage.get_disk_usage(self.volumes[
|
||||||
|
'private'].utilization)
|
||||||
|
|
||||||
def get_private_img_sz(self):
|
def get_private_img_sz(self):
|
||||||
'''Get image size of :py:attr:`private_img`.
|
'''Get the size of the :py:attr:`volumes['private']`.
|
||||||
|
|
||||||
Private image is a sparse file, so it is probably much more than
|
|
||||||
ocuppied physical space.
|
|
||||||
|
|
||||||
|
This is a temporary wrapper for backwards compatibility. You should
|
||||||
|
call directly :py:attr:`volumes[name].size`
|
||||||
:returns: domain's virtual disk size [FIXME unit]
|
:returns: domain's virtual disk size [FIXME unit]
|
||||||
:rtype: FIXME
|
:rtype: FIXME
|
||||||
|
|
||||||
.. seealso:: :py:meth:`get_disk_utilization_private_img`
|
.. seealso:: :py:meth:`get_disk_utilization_private_img`
|
||||||
'''
|
'''
|
||||||
|
|
||||||
return self.storage.get_private_img_sz()
|
warnings.warn(
|
||||||
|
"get_disk_private_img_sz is deprecated, use volumes['private'].size",
|
||||||
|
DeprecationWarning)
|
||||||
|
return qubes.storage.get_disk_usage(self.volumes['private'].size)
|
||||||
|
|
||||||
def get_disk_utilization(self):
|
def get_disk_utilization(self):
|
||||||
'''Return total space actually occuppied by all files belonging to \
|
'''Return total space actually occuppied by all files belonging to \
|
||||||
@ -1523,7 +1548,6 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
|
|
||||||
return qubes.storage.get_disk_usage(self.dir_path)
|
return qubes.storage.get_disk_usage(self.dir_path)
|
||||||
|
|
||||||
|
|
||||||
# TODO move to storage
|
# TODO move to storage
|
||||||
def verify_files(self):
|
def verify_files(self):
|
||||||
'''Verify that files accessed by this machine are sane.
|
'''Verify that files accessed by this machine are sane.
|
||||||
@ -1533,18 +1557,6 @@ class QubesVM(qubes.vm.mix.net.NetVMMixin, qubes.vm.BaseVM):
|
|||||||
|
|
||||||
self.storage.verify_files()
|
self.storage.verify_files()
|
||||||
|
|
||||||
if not os.path.exists(
|
|
||||||
os.path.join(self.storage.kernels_dir, 'vmlinuz')):
|
|
||||||
raise qubes.exc.QubesException(
|
|
||||||
'VM kernel does not exist: {0}'.format(
|
|
||||||
os.path.join(self.storage.kernels_dir, 'vmlinuz')))
|
|
||||||
|
|
||||||
if not os.path.exists(
|
|
||||||
os.path.join(self.storage.kernels_dir, 'initramfs')):
|
|
||||||
raise qubes.exc.QubesException(
|
|
||||||
'VM initramfs does not exist: {0}'.format(
|
|
||||||
os.path.join(self.storage.kernels_dir, 'initramfs')))
|
|
||||||
|
|
||||||
self.fire_event('domain-verify-files')
|
self.fire_event('domain-verify-files')
|
||||||
|
|
||||||
return True
|
return True
|
||||||
|
@ -1,11 +1,16 @@
|
|||||||
#!/usr/bin/python2 -O
|
#!/usr/bin/python2 -O
|
||||||
# vim: fileencoding=utf-8
|
# vim: fileencoding=utf-8
|
||||||
|
|
||||||
|
import warnings
|
||||||
|
|
||||||
import qubes
|
import qubes
|
||||||
import qubes.config
|
import qubes.config
|
||||||
import qubes.vm.qubesvm
|
import qubes.vm.qubesvm
|
||||||
|
from qubes.config import defaults
|
||||||
|
from qubes.vm.qubesvm import QubesVM
|
||||||
|
|
||||||
class TemplateVM(qubes.vm.qubesvm.QubesVM):
|
|
||||||
|
class TemplateVM(QubesVM):
|
||||||
'''Template for AppVM'''
|
'''Template for AppVM'''
|
||||||
|
|
||||||
dir_path_prefix = qubes.config.system_path['qubes_templates_dir']
|
dir_path_prefix = qubes.config.system_path['qubes_templates_dir']
|
||||||
@ -13,7 +18,9 @@ class TemplateVM(qubes.vm.qubesvm.QubesVM):
|
|||||||
@property
|
@property
|
||||||
def rootcow_img(self):
|
def rootcow_img(self):
|
||||||
'''COW image'''
|
'''COW image'''
|
||||||
return self.storage.rootcow_img
|
warnings.warn("rootcow_img is deprecated, use "
|
||||||
|
"volumes['root'].path_origin", DeprecationWarning)
|
||||||
|
return self.volumes['root'].path_cow
|
||||||
|
|
||||||
@property
|
@property
|
||||||
def appvms(self):
|
def appvms(self):
|
||||||
@ -23,20 +30,40 @@ class TemplateVM(qubes.vm.qubesvm.QubesVM):
|
|||||||
|
|
||||||
def __init__(self, *args, **kwargs):
|
def __init__(self, *args, **kwargs):
|
||||||
assert 'template' not in kwargs, "A TemplateVM can not have a template"
|
assert 'template' not in kwargs, "A TemplateVM can not have a template"
|
||||||
|
self.volumes = {}
|
||||||
|
self.volume_config = {
|
||||||
|
'root': {
|
||||||
|
'name': 'root',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'origin',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
},
|
||||||
|
'private': {
|
||||||
|
'name': 'private',
|
||||||
|
'pool': 'default',
|
||||||
|
'volume_type': 'read-write',
|
||||||
|
'size': defaults['private_img_size'],
|
||||||
|
},
|
||||||
|
'volatile': {
|
||||||
|
'name': 'volatile',
|
||||||
|
'pool': 'default',
|
||||||
|
'size': defaults['root_img_size'],
|
||||||
|
'volume_type': 'volatile',
|
||||||
|
},
|
||||||
|
'kernel': {
|
||||||
|
'name': 'kernel',
|
||||||
|
'pool': 'linux-kernel',
|
||||||
|
'volume_type': 'read-only',
|
||||||
|
}
|
||||||
|
}
|
||||||
super(TemplateVM, self).__init__(*args, **kwargs)
|
super(TemplateVM, self).__init__(*args, **kwargs)
|
||||||
|
|
||||||
# Some additional checks for template based VM
|
|
||||||
# TODO find better way
|
|
||||||
# assert self.root_img is not None, "Missing root_img for standalone VM!"
|
|
||||||
|
|
||||||
|
|
||||||
def clone_disk_files(self, src):
|
def clone_disk_files(self, src):
|
||||||
super(TemplateVM, self).clone_disk_files(src)
|
super(TemplateVM, self).clone_disk_files(src)
|
||||||
|
|
||||||
# Create root-cow.img
|
# Create root-cow.img
|
||||||
self.commit_changes()
|
self.commit_changes()
|
||||||
|
|
||||||
|
|
||||||
def commit_changes(self):
|
def commit_changes(self):
|
||||||
'''Commit changes to template'''
|
'''Commit changes to template'''
|
||||||
self.log.debug('commit_changes()')
|
self.log.debug('commit_changes()')
|
||||||
@ -45,6 +72,4 @@ class TemplateVM(qubes.vm.qubesvm.QubesVM):
|
|||||||
assert not self.is_running(), \
|
assert not self.is_running(), \
|
||||||
'Attempt to commit changes on running Template VM!'
|
'Attempt to commit changes on running Template VM!'
|
||||||
|
|
||||||
self.log.info(
|
|
||||||
'Commiting template update; COW: {}'.format(self.rootcow_img))
|
|
||||||
self.storage.commit_template_changes()
|
self.storage.commit_template_changes()
|
||||||
|
@ -197,7 +197,6 @@ fi
|
|||||||
%files
|
%files
|
||||||
%defattr(-,root,root,-)
|
%defattr(-,root,root,-)
|
||||||
%config(noreplace) %attr(0664,root,qubes) %{_sysconfdir}/qubes/qmemman.conf
|
%config(noreplace) %attr(0664,root,qubes) %{_sysconfdir}/qubes/qmemman.conf
|
||||||
%config(noreplace) %attr(0664,root,qubes) %{_sysconfdir}/qubes/storage.conf
|
|
||||||
/usr/bin/qvm-*
|
/usr/bin/qvm-*
|
||||||
/usr/bin/qubes-*
|
/usr/bin/qubes-*
|
||||||
/usr/bin/qmemmand
|
/usr/bin/qmemmand
|
||||||
@ -234,6 +233,7 @@ fi
|
|||||||
%dir %{python_sitelib}/qubes/storage
|
%dir %{python_sitelib}/qubes/storage
|
||||||
%{python_sitelib}/qubes/storage/__init__.py*
|
%{python_sitelib}/qubes/storage/__init__.py*
|
||||||
%{python_sitelib}/qubes/storage/xen.py*
|
%{python_sitelib}/qubes/storage/xen.py*
|
||||||
|
%{python_sitelib}/qubes/storage/kernels.py*
|
||||||
|
|
||||||
%dir %{python_sitelib}/qubes/tools
|
%dir %{python_sitelib}/qubes/tools
|
||||||
%{python_sitelib}/qubes/tools/__init__.py*
|
%{python_sitelib}/qubes/tools/__init__.py*
|
||||||
|
1
setup.py
1
setup.py
@ -45,5 +45,6 @@ if __name__ == '__main__':
|
|||||||
],
|
],
|
||||||
'qubes.storage': [
|
'qubes.storage': [
|
||||||
'xen = qubes.storage.xen:XenPool',
|
'xen = qubes.storage.xen:XenPool',
|
||||||
|
'linux-kernel = qubes.storage.kernels:LinuxKernel',
|
||||||
]
|
]
|
||||||
})
|
})
|
||||||
|
@ -45,12 +45,27 @@
|
|||||||
<on_reboot>destroy</on_reboot>
|
<on_reboot>destroy</on_reboot>
|
||||||
<on_crash>destroy</on_crash>
|
<on_crash>destroy</on_crash>
|
||||||
<devices>
|
<devices>
|
||||||
{#
|
{% set i = 0 %}
|
||||||
{% for device in vm.storage %}
|
{# TODO Allow more volumes out of the box #}
|
||||||
<disk type="block" device="{{ device.type }}">
|
{% set dd = ['e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p',
|
||||||
|
'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y']
|
||||||
|
%}
|
||||||
|
{% for device in vm.block_devices %}
|
||||||
|
<disk type="block" device="{{ device.devtype }}">
|
||||||
<driver name="phy" />
|
<driver name="phy" />
|
||||||
<source dev="{{ device.path }}" />
|
<source dev="{{ device.path }}" />
|
||||||
<target dev="{{ device.vdev }}" />
|
{% if device.name == 'root' %}
|
||||||
|
<target dev="xvda" />
|
||||||
|
{% elif device.name == 'private' %}
|
||||||
|
<target dev="xvdb" />
|
||||||
|
{% elif device.name == 'volatile' %}
|
||||||
|
<target dev="xvdc" />
|
||||||
|
{% elif device.name == 'kernel' %}
|
||||||
|
<target dev="xvdd" />
|
||||||
|
{% else %}
|
||||||
|
<target dev="xvd{{dd[i]}}" />
|
||||||
|
{% set i = i + 1 %}
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
{% if not device.rw %}
|
{% if not device.rw %}
|
||||||
<readonly />
|
<readonly />
|
||||||
@ -65,15 +80,6 @@
|
|||||||
{% endif %}
|
{% endif %}
|
||||||
</disk>
|
</disk>
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
#}
|
|
||||||
|
|
||||||
{{ vm.storage.root_dev_config() }}
|
|
||||||
{% if not prepare_dvm %}{{ vm.storage.private_dev_config() }}{% endif %}
|
|
||||||
{{ vm.storage.other_dev_config() }}
|
|
||||||
|
|
||||||
{% if not vm.hvm %}
|
|
||||||
{{ vm.storage.volatile_dev_config() }}
|
|
||||||
{% endif %}
|
|
||||||
|
|
||||||
{% if vm.netvm %}
|
{% if vm.netvm %}
|
||||||
<interface type="ethernet">
|
<interface type="ethernet">
|
||||||
|
Loading…
Reference in New Issue
Block a user