2017-09-14 21:32:57 +08:00
|
|
|
LC_ALL=C \
|
|
|
|
PATH=/bin \
|
2019-03-06 20:29:01 +08:00
|
|
|
HOME=/tmp/lib/domain--1-encryptdisk \
|
2017-09-14 21:32:57 +08:00
|
|
|
USER=test \
|
|
|
|
LOGNAME=test \
|
2019-03-08 19:15:07 +08:00
|
|
|
XDG_DATA_HOME=/tmp/lib/domain--1-encryptdisk/.local/share \
|
|
|
|
XDG_CACHE_HOME=/tmp/lib/domain--1-encryptdisk/.cache \
|
|
|
|
XDG_CONFIG_HOME=/tmp/lib/domain--1-encryptdisk/.config \
|
2017-09-14 21:32:57 +08:00
|
|
|
QEMU_AUDIO_DRV=none \
|
|
|
|
/usr/bin/qemu-system-x86_64 \
|
|
|
|
-name encryptdisk \
|
|
|
|
-S \
|
|
|
|
-object secret,id=masterKey0,format=raw,\
|
|
|
|
file=/tmp/lib/domain--1-encryptdisk/master-key.aes \
|
2018-03-29 18:51:55 +08:00
|
|
|
-machine pc-i440fx-2.1,accel=tcg,usb=off,dump-guest-core=off \
|
2017-09-14 21:32:57 +08:00
|
|
|
-m 1024 \
|
2019-04-12 16:03:36 +08:00
|
|
|
-realtime mlock=off \
|
2017-09-14 21:32:57 +08:00
|
|
|
-smp 1,sockets=1,cores=1,threads=1 \
|
|
|
|
-uuid 496898a6-e6ff-f7c8-5dc2-3cf410945ee9 \
|
2018-03-29 18:51:55 +08:00
|
|
|
-display none \
|
2018-03-29 18:51:55 +08:00
|
|
|
-no-user-config \
|
2017-09-14 21:32:57 +08:00
|
|
|
-nodefaults \
|
|
|
|
-chardev socket,id=charmonitor,\
|
|
|
|
path=/tmp/lib/domain--1-encryptdisk/monitor.sock,server,nowait \
|
2018-03-29 06:04:58 +08:00
|
|
|
-mon chardev=charmonitor,id=monitor,mode=control \
|
2018-03-29 18:51:55 +08:00
|
|
|
-rtc base=utc \
|
2018-03-29 18:51:55 +08:00
|
|
|
-no-shutdown \
|
2017-09-14 21:32:57 +08:00
|
|
|
-no-acpi \
|
|
|
|
-usb \
|
|
|
|
-object secret,id=virtio-disk0-luks-secret0,\
|
|
|
|
data=9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1,\
|
|
|
|
keyid=masterKey0,iv=AAECAwQFBgcICQoLDA0ODw==,format=base64 \
|
|
|
|
-drive file=/storage/guest_disks/encryptdisk,\
|
|
|
|
key-secret=virtio-disk0-luks-secret0,format=luks,if=none,id=drive-virtio-disk0 \
|
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x4,drive=drive-virtio-disk0,\
|
2018-08-09 19:26:17 +08:00
|
|
|
id=virtio-disk0,bootindex=1 \
|
2017-09-14 21:32:57 +08:00
|
|
|
-object secret,id=virtio-disk1-luks-secret0,\
|
|
|
|
data=9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1,\
|
|
|
|
keyid=masterKey0,iv=AAECAwQFBgcICQoLDA0ODw==,format=base64 \
|
|
|
|
-drive file=/storage/guest_disks/encryptdisk2,\
|
|
|
|
key-secret=virtio-disk1-luks-secret0,format=luks,if=none,id=drive-virtio-disk1 \
|
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x5,drive=drive-virtio-disk1,\
|
|
|
|
id=virtio-disk1 \
|
|
|
|
-object secret,id=virtio-disk2-luks-secret0,\
|
|
|
|
data=9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1,\
|
|
|
|
keyid=masterKey0,iv=AAECAwQFBgcICQoLDA0ODw==,format=base64 \
|
|
|
|
-drive file=iscsi://myname:AQCVn5hO6HzFAhAAq0NCv8jtJcIcE+HOBlMQ1A@example.org:\
|
|
|
|
6000/iqn.1992-01.com.example%3Astorage/1,key-secret=virtio-disk2-luks-secret0,\
|
|
|
|
format=luks,if=none,id=drive-virtio-disk2 \
|
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x6,drive=drive-virtio-disk2,\
|
|
|
|
id=virtio-disk2 \
|
|
|
|
-object secret,id=virtio-disk3-luks-secret0,\
|
|
|
|
data=9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1,\
|
|
|
|
keyid=masterKey0,iv=AAECAwQFBgcICQoLDA0ODw==,format=base64 \
|
|
|
|
-drive file=iscsi://iscsi.example.com:3260/demo-target/3,\
|
|
|
|
key-secret=virtio-disk3-luks-secret0,format=luks,if=none,id=drive-virtio-disk3 \
|
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x7,drive=drive-virtio-disk3,\
|
|
|
|
id=virtio-disk3 \
|
|
|
|
-object secret,id=virtio-disk4-luks-secret0,\
|
|
|
|
data=9eao5F8qtkGt+seB1HYivWIxbtwUu6MQtg1zpj/oDtUsPr1q8wBYM91uEHCn6j/1,\
|
|
|
|
keyid=masterKey0,iv=AAECAwQFBgcICQoLDA0ODw==,format=base64 \
|
|
|
|
-drive 'file=rbd:pool/image:auth_supported=none:mon_host=mon1.example.org\:\
|
|
|
|
6321\;mon2.example.org\:6322\;mon3.example.org\:6322,\
|
|
|
|
key-secret=virtio-disk4-luks-secret0,format=luks,if=none,\
|
|
|
|
id=drive-virtio-disk4' \
|
|
|
|
-device virtio-blk-pci,bus=pci.0,addr=0x8,drive=drive-virtio-disk4,\
|
|
|
|
id=virtio-disk4 \
|
|
|
|
-device virtio-balloon-pci,id=balloon0,bus=pci.0,addr=0x3
|