Re: [libvirt] [RFC PATCHv2 5/5] WIP: smartcard: turn on qemu support

On Thu, Jan 13, 2011 at 05:34:37PM -0700, Eric Blake wrote: What is the status of this support wrt upstream QEMU ? Has the smartcard stuff been accepted into GIT yet ? Also there is where the lack of security driver integration will cause problems, because QEMU won't start. You've assigned device aliases here.... Ideally this would have an id= field too, eg if=ccid0 ....But in this following block of code never added the aliases to the -device options: I guess we need some kind of escaping of special chars in the filename here since we append 3 in a row, it might confuse QEMU's parser. Not sure offhand how QEMU expects that to work. Or since we already depend on existance of -device, we might want to use '-set' for setting the filenames and thus avoid need to escape, eg -device ccid-card-emulated,backend=certificates,id=smartcard0 -set ccid-card-emulated.smartcard0.cert0=$FILENAME -set ccid-card-emulated.smartcard0.cert1=$FILENAME -set ccid-card-emulated.smartcard0.cert2=$FILENAME albeit at the cost of much longer command lines. The 'id' setting for the chardev should really have a prefix on it, because we won't want it to be the same as the 'id' setting used for the -device option. We currently only provide a single '-device usb-ccid' device. It looks like we're relying on the ccid-card-XXX devices automagically associating themselves with that. It would be better to explicitly link them up by specifying the 'id' of the 'usb-ccid' device to which they must be associated. If QEMU doesn't have such an explicit link, it ought to be added. Also, does the order of '-device ccid-card-XXX' devices matter ie is the ordering a guest visible ABI ? If so, then we need to track an explicit address against each <smartcard> so that we can selectively hotplug/hotunplug devices, and have a stable ABI across migration. Regards, Daniel