image-builder
image-builder copied to clipboard
kubernetes-sigs
Added qemu guest agent
As discussed in: https://github.com/kubernetes-sigs/image-builder/pull/847
I moved the adding of qemu-guest-agent into the image into a separate PR.
This branch is forked from the one in the previous PR so should only be merged after it.
[APPROVALNOTIFIER] This PR is NOT APPROVED
This pull-request has been approved by: isaacdorfman
Once this PR has been reviewed and has the lgtm label, please assign fabriziopandini for approval by writing /assign @fabriziopandini in a comment. For more information see:The Kubernetes Code Review Process.
The full list of commands accepted by this bot can be found here.
Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment
I'll copy/paste the same comment to this issue to have it within this disussion.
We asked Canonical on whether to use the qemu-guest-agent or not. There is no clear recommendation. It is a decision based on every individual use case.
Qemu Guest Agent [1] is used by some of the Canonical customers and in general it is supported by the KVM (and OpenStack installations with virtualization based on KVM). Unfortunately there is no official Canonical documentation that provides pros and cons to make our client decision easier. Following are some items to take into consideration when using the guest agent:
- it allows for file system access from the host to a VM
- it allows for changing user's password on a VM, including root password
- it allows for read/write file access within a VM
- it provides another layer of connectivity between a VM and host and in some particular use cases this might be beneficial, ie. quiescence filesystem prior to snapshot in order to have consistent data
However it should be conscious, justified decision of a cloud user/operator to start using the agent as it exposed VM data to some extent.
[1] https://qemu-project.gitlab.io/qemu/interop/qemu-ga.html
For us personally, we won't be using the qemu-guest-agent. I'd recommend opt-in rather then opt-out.
Sean Schneeweiss [email protected], Mercedes-Benz Tech Innovation GmbH, Provider Information
Seems like none of the providers (vsphere, aws, azure, gcp, openstack, etc) needs the qemu-guest-agent.
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs.
This bot triages issues and PRs according to the following rules:
- After 90d of inactivity,
lifecycle/staleis applied - After 30d of inactivity since
lifecycle/stalewas applied,lifecycle/rottenis applied - After 30d of inactivity since
lifecycle/rottenwas applied, the issue is closed
You can:
- Mark this issue or PR as fresh with
/remove-lifecycle stale - Mark this issue or PR as rotten with
/lifecycle rotten - Close this issue or PR with
/close - Offer to help out with Issue Triage
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle stale
The Kubernetes project currently lacks enough active contributors to adequately respond to all PRs.
This bot triages PRs according to the following rules:
- After 90d of inactivity,
lifecycle/staleis applied - After 30d of inactivity since
lifecycle/stalewas applied,lifecycle/rottenis applied - After 30d of inactivity since
lifecycle/rottenwas applied, the PR is closed
You can:
- Mark this PR as fresh with
/remove-lifecycle rotten - Close this PR with
/close - Offer to help out with Issue Triage
Please send feedback to sig-contributor-experience at kubernetes/community.
/lifecycle rotten
PR needs rebase.
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.
I'm closing this PR since there has not been any updates in a long time. Please re-open when needed.