On Fri, Jan 06, 2023 at 12:17:05PM +0800, Ming Lei wrote: > Hello, > > Stefan Hajnoczi suggested un-privileged ublk device[1] for container > use case. > > So far only administrator can create/control ublk device which is too > strict and increase system administrator burden, and this patchset > implements un-privileged ublk device: > > - any user can create ublk device, which can only be controlled & > accessed by the owner of the device or administrator > > For using such mechanism, system administrator needs to deploy two > simple udev rules[2] after running 'make install' in ublksrv. > > Userspace(ublksrv): > > https://github.com/ming1/ubdsrv/tree/unprivileged-ublk > > 'ublk add -t $TYPE --un_privileged' is for creating one un-privileged > ublk device if the user is un-privileged. > > > [1] https://lore.kernel.org/linux-block/YoOr6jBfgVm8GvWg@stefanha-x1.localdomain/ > [2] https://github.com/ming1/ubdsrv/blob/unprivileged-ublk/README.rst#un-privileged-mode > > V4: > - only allow to create unprivileged udev for current user, as > suggested by Jonathan Corbet > - fix misc bug for handling failure > - add detailed document > - update userspace Hello Guys, Ping... Thanks, Ming
