From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=GavZ=27=nongnu.org=qemu-devel-bounces+qemu-devel=archiver.kernel.org@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-5.4 required=3.0 tests=DKIMWL_WL_HIGH,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,
	SIGNED_OFF_BY,SPF_HELO_NONE,SPF_PASS,USER_AGENT_SANE_1 autolearn=ham
	autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 4D534C33CA2
	for <qemu-devel@archiver.kernel.org>; Fri, 10 Jan 2020 09:31:22 +0000 (UTC)
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by mail.kernel.org (Postfix) with ESMTPS id 15DC820721
	for <qemu-devel@archiver.kernel.org>; Fri, 10 Jan 2020 09:31:22 +0000 (UTC)
Authentication-Results: mail.kernel.org;
	dkim=pass (1024-bit key) header.d=redhat.com header.i=@redhat.com header.b="bzU5zP+X"
DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 15DC820721
Authentication-Results: mail.kernel.org; dmarc=fail (p=none dis=none) header.from=redhat.com
Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org
Received: from localhost ([::1]:43014 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org>)
	id 1ipqdV-0006et-4p
	for qemu-devel@archiver.kernel.org; Fri, 10 Jan 2020 04:31:21 -0500
Received: from eggs.gnu.org ([2001:470:142:3::10]:40812)
 by lists.gnu.org with esmtp (Exim 4.90_1)
 (envelope-from <berrange@redhat.com>) id 1ipqcV-0005zw-Em
 for qemu-devel@nongnu.org; Fri, 10 Jan 2020 04:30:21 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <berrange@redhat.com>) id 1ipqcR-0002RV-LU
 for qemu-devel@nongnu.org; Fri, 10 Jan 2020 04:30:17 -0500
Received: from us-smtp-delivery-1.mimecast.com ([205.139.110.120]:45548
 helo=us-smtp-1.mimecast.com)
 by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
 (Exim 4.71) (envelope-from <berrange@redhat.com>) id 1ipqcR-0002MJ-78
 for qemu-devel@nongnu.org; Fri, 10 Jan 2020 04:30:15 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
 s=mimecast20190719; t=1578648614;
 h=from:from:reply-to:reply-to:subject:subject:date:date:
 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
 content-type:content-type:
 content-transfer-encoding:content-transfer-encoding:
 in-reply-to:in-reply-to:references:references;
 bh=WaMD6NyDwQ5Yb+FqlXoIzVL7wK8YRC2cTZn6U6QC7HQ=;
 b=bzU5zP+XDrjQs443BlIJT8TYHxEFLbVakaD60kMzLv0Nf6COaU3BVFiZD14TPNSWBidfOY
 KZT1FbYIZeay40kW7kyArUORcqGkMKkN4ahRBHWBr6aWC+NI+Q9CEP7TfQvTqVYq2SNfF/
 9rX6CLFpdzcep+nV1VXBqllIwwD6gqQ=
Received: from mimecast-mx01.redhat.com (mimecast-mx01.redhat.com
 [209.132.183.4]) (Using TLS) by relay.mimecast.com with ESMTP id
 us-mta-310-DjoSFZ1MNs-n0nWA9c1hRw-1; Fri, 10 Jan 2020 04:30:12 -0500
Received: from smtp.corp.redhat.com (int-mx08.intmail.prod.int.phx2.redhat.com
 [10.5.11.23])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by mimecast-mx01.redhat.com (Postfix) with ESMTPS id E81CB800D53
 for <qemu-devel@nongnu.org>; Fri, 10 Jan 2020 09:30:11 +0000 (UTC)
Received: from redhat.com (ovpn-112-65.ams2.redhat.com [10.36.112.65])
 by smtp.corp.redhat.com (Postfix) with ESMTPS id DE749277B9;
 Fri, 10 Jan 2020 09:30:07 +0000 (UTC)
Date: Fri, 10 Jan 2020 09:30:04 +0000
From: Daniel =?utf-8?B?UC4gQmVycmFuZ8Op?= <berrange@redhat.com>
To: "Dr. David Alan Gilbert" <dgilbert@redhat.com>
Subject: Re: [PATCH 092/104] virtiofsd: add man page
Message-ID: <20200110093004.GB3423494@redhat.com>
References: <20191212163904.159893-1-dgilbert@redhat.com>
 <20191212163904.159893-93-dgilbert@redhat.com>
 <20200107121328.GD3368802@redhat.com>
 <20200109200213.GT6795@work-vm>
MIME-Version: 1.0
In-Reply-To: <20200109200213.GT6795@work-vm>
User-Agent: Mutt/1.12.1 (2019-06-15)
X-Scanned-By: MIMEDefang 2.84 on 10.5.11.23
X-MC-Unique: DjoSFZ1MNs-n0nWA9c1hRw-1
X-Mimecast-Spam-Score: 0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic]
 [fuzzy]
X-Received-From: 205.139.110.120
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <https://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Reply-To: Daniel =?utf-8?B?UC4gQmVycmFuZ8Op?= <berrange@redhat.com>
Cc: qemu-devel@nongnu.org, stefanha@redhat.com, vgoyal@redhat.com
Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org
Sender: "Qemu-devel"
 <qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org>

On Thu, Jan 09, 2020 at 08:02:13PM +0000, Dr. David Alan Gilbert wrote:
> * Daniel P. Berrang=C3=A9 (berrange@redhat.com) wrote:
> > On Thu, Dec 12, 2019 at 04:38:52PM +0000, Dr. David Alan Gilbert (git) =
wrote:
> > > From: Stefan Hajnoczi <stefanha@redhat.com>
> > >=20
> > > Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com>
> > > ---
> > >  Makefile                       |  7 +++
> > >  tools/virtiofsd/virtiofsd.texi | 85 ++++++++++++++++++++++++++++++++=
++
> > >  2 files changed, 92 insertions(+)
> > >  create mode 100644 tools/virtiofsd/virtiofsd.texi
> >=20
> > Reviewed-by: Daniel P. Berrang=C3=A9 <berrange@redhat.com>
>=20
> Thanks.
>=20
> > with some notes at the very end
>=20
> <snip>
>=20
> > > +@c man begin DESCRIPTION
> > > +
> > > +Share a host directory tree with a guest through a virtio-fs device.=
  This
> > > +program is a vhost-user backend that implements the virtio-fs device=
.  Each
> > > +virtio-fs device instance requires its own virtiofsd process.
> > > +
> > > +This program is designed to work with QEMU's @code{--device vhost-us=
er-fs-pci}
> > > +but should work with any virtual machine monitor (VMM) that supports
> > > +vhost-user.  See the EXAMPLES section below.
> > > +
> > > +This program must be run as the root user.
> >=20
> > So there's no way for an unprivileged user to do file sharing like they
> > can with 9p right now ?
>=20
> Correct.
>=20
> (Which also makes it a pain for using in a make check)
>=20
> > >                                              Upon startup the program=
 will
> > > +switch into a new file system namespace with the shared directory tr=
ee as its
> > > +root.  This prevents "file system escapes" due to symlinks and other=
 file
> > > +system objects that might lead to files outside the shared directory=
.  The
> > > +program also sandboxes itself using seccomp(2) to prevent ptrace(2) =
and other
> > > +vectors that could allow an attacker to compromise the system after =
gaining
> > > +control of the virtiofsd process.
> > > +
> > > +@c man end
> > > +
> > > +@c man begin OPTIONS
> > > +@table @option
> > > +@item -h, --help
> > > +Print help.
> > > +@item -V, --version
> > > +Print version.
> > > +@item -d, -o debug
> > > +Enable debug output.
> > > +@item --syslog
> > > +Print log messages to syslog instead of stderr.
> > > +@item -o log_level=3D@var{level}
> > > +Print only log messages matching @var{level} or more severe.  @var{l=
evel} is
> > > +one of @code{err}, @code{warn}, @code{info}, or @code{debug}.  The d=
efault is
> > > +@var{info}.
> > > +@item -o source=3D@var{path}
> > > +Share host directory tree located at @var{path}.  This option is req=
uired.
> > > +@item --socket-path=3D@var{path}, -o vhost_user_socket=3D@var{path}
> > > +Listen on vhost-user UNIX domain socket at @var{path}.
> > > +@item --fd=3D@var{fdnum}
> > > +Accept connections from vhost-user UNIX domain socket file descripto=
r @var{fdnum}.  The file descriptor must already be listening for connectio=
ns.
> > > +@item --thread-pool-size=3D@var{num}
> > > +Restrict the number of worker threads per request queue to @var{num}=
.  The default is 64.
> > > +@item --cache=3D@code{none}|@code{auto}|@code{always}
> > > +Select the desired trade-off between coherency and performance.  @co=
de{none}
> > > +forbids the FUSE client from caching to achieve best coherency at th=
e cost of
> > > +performance.  @code{auto} acts similar to NFS with a 1 second metada=
ta cache
> > > +timeout.  @code{always} sets a long cache lifetime at the expense of=
 coherency.
> > > +@item --writeback
> > > +Enable writeback cache, allowing the FUSE client to buffer and merge=
 write requests.
> > > +@end table
> > > +@c man end
> > > +
> > > +@c man begin EXAMPLES
> > > +Export @code{/var/lib/fs/vm001/} on vhost-user UNIX domain socket @c=
ode{/var/run/vm001-vhost-fs.sock}:
> > > +
> > > +@example
> > > +host# virtiofsd --socket-path=3D/var/run/vm001-vhost-fs.sock -o sour=
ce=3D/var/lib/fs/vm001
> > > +host# qemu-system-x86_64 \
> > > +    -chardev socket,id=3Dchar0,path=3D/var/run/vm001-vhost-fs.sock \
> > > +    -device vhost-user-fs-pci,chardev=3Dchar0,tag=3Dmyfs \
> > > +    -object memory-backend-file,id=3Dmem,size=3D4G,mem-path=3D/dev/s=
hm,share=3Don \
> > > +    -numa node,memdev=3Dmem \
> > > +    ...
> > > +guest# mount -t virtio_fs \
> > > +    -o default_permissions,allow_other,user_id=3D0,group_id=3D0,root=
mode=3D040000,dax \
> > > +    myfs /mnt
> > > +@end example
> > > +@c man end
> > > +
> > > +@ignore
> > > +@setfilename virtiofsd
> > > +@settitle QEMU virtio-fs shared file system daemon
> > > +
> > > +@c man begin AUTHOR
> >=20
> > s/AUTHOR/COPYRIGHT/
>=20
> OK
>=20
> > since this isn't providing any author information.
> >=20
> > > +Copyright (C) 2019 Red Hat, Inc.
> >=20
> > 2019-2020 !
>=20
> Time flies...
>=20
> > And now insert
> >=20
> >  @c man end
> >  @c man begin LICENSE
> >=20
> > > +This is free software; see the source for copying conditions.  There=
 is NO
> > > +warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR P=
URPOSE.
> > > +@c man end
> > > +@end ignore
>=20
> Hmm, so it ends up like:
>=20
>=20
> @c man end
>=20
> @ignore
> @setfilename virtiofsd
> @settitle QEMU virtio-fs shared file system daemon
>=20
> @c man begin COPYRIGHT
> Copyright (C) 2019-2020 Red Hat, Inc.
> @c man end
> @c man begin LICENSE
> This is free software; see the source for copying conditions.  There is N=
O
> warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOS=
E.
> @c man end
> @end ignore
>=20
>=20
> That results in:
>=20
> COPYRIGHT
>        Copyright (C) 2019-2020 Red Hat, Inc.
>=20
> but with no license printed.
> That's from after a make doing a   nroff -man ./tools/virtiofsd/virtiofsd=
.1 |more
>=20
> is that what's expected?  I'd expected to see the license somewhere.

No, that's not expected :-(  It seems my good intentions were killed by
texi2pod.pl which whitelists the permitted section names, and does not
allow "LICENSE" as one of them. Either ignore my suggestion, given that
this bug is pre-existing in all QEMU man pages, or fix texi2pod.pl to
allow LICENSE.

Regards,
Daniel
--=20
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange=
 :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com=
 :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange=
 :|