On 07/02/2014 10:08 AM, NEVEU Stephane wrote: > Hi all, > > I?m missing around with ?rbd layering? to store some ready-to-use > templates (format 2) in a template pool : > > /Rbd ?p templates ls/ > > /Ubuntu1404/ > > /Centos6/ > > /?/ > > // > > /Rbd snap create templates/Ubuntu1404 at Ubuntu1404-snap-protected/ > > /Rbd snap protect templates/Ubuntu1404 at Ubuntu1404-snap-protected/ > > /Rbd clone templates/Ubuntu1404 at Ubuntu1404-snap-protected > kvm1/Ubuntu1404-snap-protected-children/ > > My libvirt key is created with : > > /Ceph auth get-or-create client.kvm1 mon ?allow r? osd ?allow class-read > object_prefix rbd_children, allow rwx pool=kvm1, allow r pool=templates?/ > > // > > But read permission for the pool ?templates? seems to be not enough, > libvirt is complaining ?RBD cannot access the rbd disk > kvm1/Ubuntu1404-snap-protected-children? so : > > /Ceph auth get-or-create client.kvm1 mon ?allow r? osd ?allow class-read > object_prefix rbd_children, allow rwx pool=kvm1, allow *rwx* > pool=templates?/ > I think that rx should be enough instead of rwx. Could you try that? Wido > // > > It?s actually working but it?s probably a bit too much, because I don?t > want people to be able to modify the parent template so do I have a > better choice ? > > Libvirt seems to be happier but this clone is read-only and I want now > people to use this OS image as a base file and write differences in a > backing file (like with qemu ? -b ?). > > How can I do such a thing ? or maybe I?m doing it in a wrong way? any help ? > > Thanks > > > > _______________________________________________ > ceph-users mailing list > ceph-users at lists.ceph.com > http://lists.ceph.com/listinfo.cgi/ceph-users-ceph.com > -- Wido den Hollander 42on B.V. Ceph trainer and consultant Phone: +31 (0)20 700 9902 Skype: contact42on
 |