EnglishFrenchSpanish

Ubuntu | Fedora | VPN | File sharing


OnWorks favicon

virtfs-proxy-helper - Online in the Cloud

Run virtfs-proxy-helper in OnWorks free hosting provider over Ubuntu Online, Fedora Online, Windows online emulator or MAC OS online emulator

This is the command virtfs-proxy-helper that can be run in the OnWorks free hosting provider using one of our multiple free online workstations such as Ubuntu Online, Fedora Online, Windows online emulator or MAC OS online emulator

PROGRAM:

NAME


virtfs-proxy-helper - QEMU 9p virtfs proxy filesystem helper

SYNOPSIS


usage: virtfs-proxy-helper options

DESCRIPTION


Pass-through security model in QEMU 9p server needs root privilege to do few file
operations (like chown, chmod to any mode/uid:gid). There are two issues in pass-
through security model

1) TOCTTOU vulnerability: Following symbolic links in the server could provide access
to files beyond 9p export path.

2) Running QEMU with root privilege could be a security issue.

To overcome above issues, following approach is used: A new filesytem type 'proxy' is
introduced. Proxy FS uses chroot + socket combination for securing the vulnerability
known with following symbolic links. Intention of adding a new filesystem type is to
allow qemu to run in non-root mode, but doing privileged operations using socket IO.

Proxy helper(a stand alone binary part of qemu) is invoked with root privileges. Proxy
helper chroots into 9p export path and creates a socket pair or a named socket based
on the command line parameter. QEMU and proxy helper communicate using this socket.
QEMU proxy fs driver sends filesystem request to proxy helper and receives the
response from it.

Proxy helper is designed so that it can drop the root privilege with retaining
capbilities needed for doing filesystem operations only.

OPTIONS


The following options are supported:

-h Display help and exit

-p|--path path
Path to export for proxy filesystem driver

-f|--fd socket-id
Use given file descriptor as socket descriptor for communicating with qemu proxy fs
drier. Usually a helper like libvirt will create socketpair and pass one of the fds as
parameter to -f|--fd

-s|--socket socket-file
Creates named socket file for communicating with qemu proxy fs driver

-u|--uid uid -g|--gid gid
uid:gid combination to give access to named socket file

-n|--nodaemon
Run as a normal program. By default program will run in daemon mode

Use virtfs-proxy-helper online using onworks.net services


Free Servers & Workstations


Download Windows & Linux apps


  • 1
    formkiq-core
    formkiq-core
    FormKiQ Core is an Open Source Document
    Management System (DMS), available to
    run as a headless software or with a
    web-based client, deployed to your
    Amazon We...
    Download formkiq-core
  • 2
    Blackfriday
    Blackfriday
    Blackfriday is a Markdown processor
    implemented in Go. It is paranoid about
    its input (so you can safely feed it
    user-supplied data), it is fast, it
    supports c...
    Download Blackfriday
  • 3
    QNAP NAS GPL Source
    QNAP NAS GPL Source
    GPL source for QNAP Turbo NAS.
    Audience: Developers. User interface:
    Web-based. Programming Language: C,
    Java. Categories:System, Storage,
    Operating System Ker...
    Download QNAP NAS GPL Source
  • 4
    deep-clean
    deep-clean
    A Kotlin script that nukes all build
    caches from Gradle/Android projects.
    Useful when Gradle or the IDE let you
    down. The script has been tested on
    macOS, but ...
    Download deep-clean
  • 5
    Eclipse Checkstyle Plug-in
    Eclipse Checkstyle Plug-in
    The Eclipse Checkstyle plug-in
    integrates the Checkstyle Java code
    auditor into the Eclipse IDE. The
    plug-in provides real-time feedback to
    the user about viol...
    Download Eclipse Checkstyle Plug-in
  • 6
    AstrOrzPlayer
    AstrOrzPlayer
    AstrOrz Player is a free media player
    software, part based on WMP and VLC. The
    player is in a minimalist style, with
    more than ten theme colors, and can also
    b...
    Download AstrOrzPlayer
  • More »

Linux commands

Ad




ABOUT ONWORKS®

OnWorks is a free online VPS hosting provider that gives cloud services like free workstations, online AntiVirus, free VPN secure proxies, and free personal and business email. Our free VPS can be based on CentOS, Fedora, Ubuntu and Debian. Some of them are customized to be like Windows online or MacOS online.

Site Links
Our Sites

Copyright ©2024 OffiDocs Group OU. All Rights Reserved. OnWorks® is a registered trademark.