2020-01-10 16:49:42 +00:00
|
|
|
LC_ALL=C \
|
|
|
|
PATH=/bin \
|
|
|
|
HOME=/tmp/lib/domain--1-encryptdisk \
|
|
|
|
USER=test \
|
|
|
|
LOGNAME=test \
|
|
|
|
XDG_DATA_HOME=/tmp/lib/domain--1-encryptdisk/.local/share \
|
|
|
|
XDG_CACHE_HOME=/tmp/lib/domain--1-encryptdisk/.cache \
|
|
|
|
XDG_CONFIG_HOME=/tmp/lib/domain--1-encryptdisk/.config \
|
|
|
|
/usr/bin/qemu-system-x86_64 \
|
|
|
|
-name guest=encryptdisk,debug-threads=on \
|
|
|
|
-S \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"masterKey0","format":"raw",\
|
|
|
|
"file":"/tmp/lib/domain--1-encryptdisk/master-key.aes"}' \
|
2021-02-06 12:05:04 +00:00
|
|
|
-machine pc,accel=tcg,usb=off,dump-guest-core=off,memory-backend=pc.ram \
|
2020-01-10 16:49:42 +00:00
|
|
|
-cpu qemu64 \
|
|
|
|
-m 1024 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"memory-backend-ram","id":"pc.ram","size":1073741824}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-overcommit mem-lock=off \
|
|
|
|
-smp 1,sockets=1,cores=1,threads=1 \
|
|
|
|
-uuid 496898a6-e6ff-f7c8-5dc2-3cf410945ee9 \
|
|
|
|
-display none \
|
|
|
|
-no-user-config \
|
|
|
|
-nodefaults \
|
2021-02-16 11:29:24 +00:00
|
|
|
-chardev socket,id=charmonitor,fd=1729,server=on,wait=off \
|
2020-01-10 16:49:42 +00:00
|
|
|
-mon chardev=charmonitor,id=monitor,mode=control \
|
|
|
|
-rtc base=utc \
|
|
|
|
-no-shutdown \
|
|
|
|
-no-acpi \
|
|
|
|
-boot strict=on \
|
|
|
|
-device piix3-usb-uhci,id=usb,bus=pci.0,addr=0x1.0x2 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-7-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"file","filename":"/storage/guest_disks/encryptdisk",\
|
|
|
|
"node-name":"libvirt-7-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-7-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-7-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-7-storage"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x4,drive=libvirt-7-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk0,bootindex=1 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-6-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"file","filename":"/storage/guest_disks/encryptdisk2",\
|
|
|
|
"node-name":"libvirt-6-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-6-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-6-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-6-storage"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x5,drive=libvirt-6-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk1 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-5-storage-auth-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
|
|
|
-object '{"qom-type":"secret","id":"libvirt-5-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"iscsi","portal":"example.org:6000",\
|
|
|
|
"target":"iqn.1992-01.com.example:storage","lun":1,"transport":"tcp",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"user":"myname","password-secret":"libvirt-5-storage-auth-secret0",\
|
2020-01-10 16:49:42 +00:00
|
|
|
"node-name":"libvirt-5-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-5-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-5-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-5-storage"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x2,drive=libvirt-5-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk2 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-4-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"iscsi","portal":"iscsi.example.com:3260",\
|
|
|
|
"target":"demo-target","lun":3,"transport":"tcp",\
|
|
|
|
"node-name":"libvirt-4-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-4-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-4-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-4-storage"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x6,drive=libvirt-4-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk3 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-3-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"rbd","pool":"pool","image":"image",\
|
|
|
|
"server":[{"host":"mon1.example.org","port":"6321"},{"host":"mon2.example.org",\
|
|
|
|
"port":"6322"},{"host":"mon3.example.org","port":"6322"}],\
|
|
|
|
"node-name":"libvirt-3-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-3-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-3-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-3-storage"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x7,drive=libvirt-3-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk4 \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-2-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"file","filename":"/storage/guest_disks/base.qcow2",\
|
|
|
|
"node-name":"libvirt-2-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-2-format","read-only":true,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-2-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-2-storage","backing":null}' \
|
2021-03-12 15:28:11 +00:00
|
|
|
-object '{"qom-type":"secret","id":"libvirt-1-format-encryption-secret0",\
|
|
|
|
"data":"9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1",\
|
|
|
|
"keyid":"masterKey0","iv":"AAECAwQFBgcICQoLDA0ODw==","format":"base64"}' \
|
2020-01-10 16:49:42 +00:00
|
|
|
-blockdev '{"driver":"file","filename":"/storage/guest_disks/encryptdisk5",\
|
|
|
|
"node-name":"libvirt-1-storage","auto-read-only":true,"discard":"unmap"}' \
|
|
|
|
-blockdev '{"node-name":"libvirt-1-format","read-only":false,"driver":"qcow2",\
|
2020-03-09 05:58:57 +00:00
|
|
|
"encrypt":{"format":"luks","key-secret":"libvirt-1-format-encryption-secret0"},\
|
2020-01-10 16:49:42 +00:00
|
|
|
"file":"libvirt-1-storage","backing":"libvirt-2-format"}' \
|
2020-05-06 20:13:03 +00:00
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x8,drive=libvirt-1-format,\
|
2020-01-10 16:49:42 +00:00
|
|
|
id=virtio-disk5 \
|
2021-02-24 14:40:19 +00:00
|
|
|
-audiodev id=audio1,driver=none \
|
2020-01-10 16:49:42 +00:00
|
|
|
-device virtio-balloon-pci,id=balloon0,bus=pci.0,addr=0x3 \
|
|
|
|
-sandbox on,obsolete=deny,elevateprivileges=deny,spawn=deny,\
|
|
|
|
resourcecontrol=deny \
|
|
|
|
-msg timestamp=on
|