Implementation of remote FS driver based on rsync for libvirt
blueprint remote-fs-driver Change-Id: Ic975977b620c69e26707c6a6e3402c0b6b1fca73
This commit is contained in:
Marian Horban
committed by
John Garbutt
John Garbutt
parent
39a4b3ba59
commit
3110b946aa
@@ -0,0 +1,159 @@
|
||||
..
|
||||
This work is licensed under a Creative Commons Attribution 3.0 Unported
|
||||
License.
|
||||
|
||||
http://creativecommons.org/licenses/by/3.0/legalcode
|
||||
|
||||
===============================================================
|
||||
Implementation of remote FS driver based on rsync for libvirt
|
||||
===============================================================
|
||||
|
||||
https://blueprints.launchpad.net/nova/+spec/remote-fs-driver
|
||||
|
||||
libvirt cannot use RPC to copy files over network to/from other compute nodes.
|
||||
That's why libvirt uses additional interface to communicate with other compute
|
||||
nodes. Usage of fewer tools for communication between compute nodes can improve
|
||||
security, ease of testing and deployment and give better flexibility.
|
||||
Right now libvirt driver uses ssh and rsync commands for following operations:
|
||||
* creation directory on remote host,
|
||||
* creation file on remote host,
|
||||
* removing file from remote host,
|
||||
* copying file to remote host.
|
||||
Target of this BP is implementation of two libvirt remote FS drivers: `ssh` and
|
||||
`rsync` drivers. Each of these drivers will implement whole set of operation
|
||||
needed by libvirt driver. `ssh` driver will use ssh and scp commands and
|
||||
`rsync` driver will use rsync command only.
|
||||
|
||||
|
||||
Problem description
|
||||
===================
|
||||
|
||||
The current libvirt driver uses the following commands for executing remote
|
||||
filesystem operations:
|
||||
* ssh touch,
|
||||
* ssh mkdir,
|
||||
* ssh rm,
|
||||
* scp,
|
||||
* rsync.
|
||||
This fact forces us to use an additional shell and this can cause security
|
||||
risks. We can not avoid shell usage because copying files over network requires
|
||||
a shell. It is possible to decrease the interaction between nodes by using ssh
|
||||
commands or rsync commands only. Such separation can allow us to decrease
|
||||
number of opened ports on node. Also using only rsync/scp commands can allow
|
||||
us to use secure shells like rssh.
|
||||
|
||||
Use Cases
|
||||
----------
|
||||
|
||||
The cloud operator wishes to reduce the number of commands used and the number
|
||||
of ports opened by the nova-compute daemon when migrating workloads between
|
||||
compute nodes in order to reduce attack vectors.
|
||||
|
||||
Project Priority
|
||||
-----------------
|
||||
|
||||
None.
|
||||
|
||||
Proposed change
|
||||
===============
|
||||
|
||||
To achieve these goals abstract class 'RemoteFilesystem' will be added in
|
||||
nova/virt/libvirt/remotefs.py. This class will contain operations needed for
|
||||
libvirt to communicate with other nodes perform filesystem operations on those
|
||||
nodes. This abstract class will be implemented in SshRemoteFilesystem and
|
||||
RsyncRemoteFilesystem classes.
|
||||
Class SshRemoteFilesystem will use ssh and scp tools only(scp uses ssh for data
|
||||
transfer, and it uses the same authentication and provides the same security as
|
||||
ssh).
|
||||
Additional remote FS driver will be implemented in RsyncRemoteFilesystem class.
|
||||
This class will use rsync command only.
|
||||
Configuration option 'remote_filesystem_transport' will be added with default
|
||||
value 'ssh' and 'choices ssh', 'rsync'. Depending on option value corresponding
|
||||
class will be instantiated.
|
||||
|
||||
Alternatives
|
||||
------------
|
||||
|
||||
None.
|
||||
|
||||
Data model impact
|
||||
-----------------
|
||||
|
||||
None.
|
||||
|
||||
REST API impact
|
||||
---------------
|
||||
|
||||
None.
|
||||
|
||||
Security impact
|
||||
---------------
|
||||
|
||||
These improvements allow us to decrease number of used ports on compute node.
|
||||
Also it allows us to use restricted shell for providing limited access to a
|
||||
host like 'rssh'.
|
||||
|
||||
Notifications impact
|
||||
--------------------
|
||||
|
||||
None.
|
||||
|
||||
Other end user impact
|
||||
---------------------
|
||||
|
||||
None.
|
||||
|
||||
Performance Impact
|
||||
------------------
|
||||
|
||||
None.
|
||||
|
||||
Other deployer impact
|
||||
---------------------
|
||||
|
||||
To achieve security benefits some kind of restricted shell must be installed
|
||||
on compute nodes. New shell should be used for nova user.
|
||||
|
||||
Developer impact
|
||||
----------------
|
||||
|
||||
None.
|
||||
|
||||
|
||||
Implementation
|
||||
==============
|
||||
|
||||
Assignee(s)
|
||||
-----------
|
||||
|
||||
Primary assignee: mhorban@mirantis.com
|
||||
|
||||
Work Items
|
||||
----------
|
||||
|
||||
* Implementation of ssh remote FS driver for libvirt.
|
||||
* Implementation of rsync remote FS driver for libvirt.
|
||||
* Addind configuration option to choose remote FS driver.
|
||||
|
||||
|
||||
Dependencies
|
||||
============
|
||||
|
||||
None.
|
||||
|
||||
|
||||
Testing
|
||||
=======
|
||||
|
||||
tempest test for migration instances will be added.
|
||||
|
||||
|
||||
Documentation Impact
|
||||
====================
|
||||
|
||||
Adding new option 'remote_filesystem_transport' to configure method of compute
|
||||
node communication.
|
||||
|
||||
|
||||
References
|
||||
==========
|
||||
Reference in New Issue
Block a user