diff options
| author | Luca Boccassi <bluca@debian.org> | 2023-01-03 18:08:09 +0100 |
|---|---|---|
| committer | Luca Boccassi <bluca@debian.org> | 2023-01-05 23:07:16 +0100 |
| commit | 6c94cfcda5387bcec36867c7639c777179d6e7c2 (patch) | |
| tree | 78fdb10d039209e3e8affc2ac8466ca2d8611c02 /man/sd_notify.xml | |
| parent | src/shared/: split AF_UNIX/AF_VSOCK address parsing into src/basic/ (diff) | |
| download | systemd-6c94cfcda5387bcec36867c7639c777179d6e7c2.tar.xz systemd-6c94cfcda5387bcec36867c7639c777179d6e7c2.zip | |
sd_notify: support AF_VSOCK
Allow sending notifications via AF_VSOCK, so that VMs can communicate
to the hypervisor/VMM that they are finished booting.
Note that if the hypervisor does not support SOCK_DGRAM over AF_VSOCK
(ie: qemu at the time of writing), SOCK_SEQPACKET will be used instead.
Diffstat (limited to 'man/sd_notify.xml')
| -rw-r--r-- | man/sd_notify.xml | 27 |
1 files changed, 20 insertions, 7 deletions
diff --git a/man/sd_notify.xml b/man/sd_notify.xml index de402950bb..021cd0384f 100644 --- a/man/sd_notify.xml +++ b/man/sd_notify.xml @@ -368,13 +368,26 @@ <xi:include href="libsystemd-pkgconfig.xml" xpointer="pkgconfig-text"/> <para>These functions send a single datagram with the - state string as payload to the <constant>AF_UNIX</constant> socket - referenced in the <varname>$NOTIFY_SOCKET</varname> environment - variable. If the first character of - <varname>$NOTIFY_SOCKET</varname> is <literal>@</literal>, the - string is understood as Linux abstract namespace socket. The - datagram is accompanied by the process credentials of the sending - service, using SCM_CREDENTIALS.</para> + state string as payload to the socket referenced in the + <varname>$NOTIFY_SOCKET</varname> environment variable. If the + first character of <varname>$NOTIFY_SOCKET</varname> is + <literal>/</literal> or <literal>@</literal>, the string is understood + as an <constant>AF_UNIX</constant> or Linux abstract namespace socket + (respectively), and in both cases the datagram is accompanied by the + process credentials of the sending service, using SCM_CREDENTIALS. If + the string starts with <literal>vsock:</literal> then the string is + understood as an <constant>AF_VSOCK</constant> address, which is useful + for hypervisors/VMMs or other processes on the host to receive a + notification when a virtual machine has finished booting. Note that in + case the hypervisor does not support <constant>SOCK_DGRAM</constant> + over <constant>AF_VSOCK</constant>, <constant>SOCK_SEQPACKET</constant> + will be used instead. The address should be in the form: + <literal>vsock:CID:PORT</literal>. Note that unlike other uses of vsock, + the CID is mandatory and cannot be <literal>VMADDR_CID_ANY</literal>. + Note that PID1 will send the VSOCK packets from a privileged port + (i.e.: lower than 1024), as an attempt to address concerns that unprivileged + processes in the guest might try to send malicious notifications to the + host, driving it to make destructive decisions based on them.</para> </refsect1> <refsect1> |