配置步骤:
1.生成自签名认证文件和密钥:
|
1 |
openssl req -new -newkey rsa:2048 -days 365 -nodes -x509 -keyout server.key -out server.crt |
2.修改nova.conf(novnc proxy节点)
|
1 2 3 |
ssl_only=True cert=/etc/nova/server.crt (上面生成的自签名认证文件) key=/etc/nova/server.key (上面生成的key文件) |
注意权限为novnc启动所用的账户,重启novnc服务
3.修改nova.conf(计算节点)
|
1 |
novncproxy_base_url=http://xxxx:6080/vnc_auto.html (把http改成https) |
重启nova-compute服务。
还需要考虑加上CA认证,否则浏览器会提示”此网站的安全证书有问题。”
原文地址:http://aspirer2004.blog.163.com/blog/static/1067647201452624733337/
原文地址:http://aspirer2004.blog.163.com/blog/static/1067647201422841039140/
On
本文基于havana版本nova来进行代码分析和原型实现。
实现一套新的volume插件的原因是,nbs不提供兼容cinder的api,无法使用现有的cinder插件,并且libvirt volume driver也没有nbs的实现,需要重新编写代码来完成这部分工作。
已有的实现是比较不好的一种方式,也即通过配置参数在api层区分是nbs 的volume还是cinder的volume,如果是nbs的就走新增加的挂卷、卸卷等流程(nbs支持扩容卷、修改卷QoS功能),这样就要维护很多冗余代码,包括从compute/api->compute/rpc_api->compute/manager->libvirt driver一整条代码链都要自己实现,并且绝大部分代码都是直接拷贝的cinder的实现流程,维护起来也很困难,一旦要进行大版本升级就带来很大的工作量,比如nova从F版本升级H版本的时候就花费了很长时间进行代码移植和测试工作。此外还有很多设计到卷的代码都要考虑兼容性问题,很多周边流程需要处理,导致很多与volume相关的功能在没有修改前都没办法使用。到目前为止还有很多功能都没能提供,比如unshelve、在线迁移、从volume启动虚拟机等等,我们仅仅实现了已有的基本功能(创建、删除、开机、关机、resize、cold migration等)。
基于上述原因,以及更重要的一点,为后续新功能开发做准备,我们想要实现一套新的的流程,目标是最大化的复用nova已有的代码,来完成挂卷、卸卷以及更多的涉及到卷操作的各种虚拟机生命周期管理功能。
也即达到如下目标:
直接拿代码来说明,这里是F版本移植H版本首次提交gerrit记录:https://scm.service.163.org/#/c/2049/18,下面截取部分代码段进行说明:
nova/api/openstack/compute/contrib/volumes.py:
@wsgi.serializers(xml=VolumeAttachmentTemplate)
def create(self, req, server_id, body):
“””Attach a volume to an instance.”””
# Go to our owned process if we are attaching a nbs volume
if CONF.ebs_backend == ‘nbs’:
return self._attach_nbs_volume(req, server_id, body)
nova/compute/api.py:
@check_instance_lock
@check_instance_state(vm_state=[vm_states.ACTIVE, vm_states.PAUSED,
vm_states.SUSPENDED, vm_states.STOPPED,
vm_states.RESIZED, vm_states.SOFT_DELETED],
task_state=None)
def attach_nbs_volume(self, context, instance, volume_id):
“””Attach an existing volume to an existing instance.”””
# NOTE(vish): This is done on the compute host because we want
# to avoid a race where two devices are requested at
# the same time. When db access is removed from
# compute, the bdm will be created here and we will
# have to make sure that they are assigned atomically.
# Raise exception if the instance is forbidden to attach volume.
allow_attach = self.check_allow_attach(context, instance)
if not allow_attach:
raise exception.NbsAttachForbidden()
# Check volume exists and is available to attach
# FIXME(wangpan): we just deal with single attachment status now
try:
volume = self.nbs_api.get(context, volume_id)[‘volumes’][0]
except (IndexError, KeyError, TypeError):
raise exception.VolumeNotFound(volume_id=volume_id)
nova/compute/manager.py:
@reverts_task_state
@wrap_instance_fault
def attach_nbs_volume(self, context, volume_id, device, instance):
“””Attach a nbs volume to an instance.”””
# TODO(wangpan): if this host is forbidden to attach nbs volume,
# an exception needs to be raised.
try:
return self._attach_nbs_volume(context, volume_id,
device, instance)
except Exception:
with excutils.save_and_reraise_exception():
capi = self.conductor_api
capi.block_device_mapping_destroy_by_instance_and_volume(
context, instance, volume_id)
nova/virt/libvirt/driver.py:
def attach_nbs_volume(self, instance_name, device, host_dev,
qos_info, volume_id):
“””
Attach a nbs volume to instance, and check the device or slot is
in-use, return retry if in-use, if need retry, the used device is
returned, too.
“””
target_dev = device[‘mountpoint’].rpartition(“/”)[2]
conf = vconfig.LibvirtConfigGuestDisk()
conf.source_type = “block”
conf.driver_name = libvirt_utils.pick_disk_driver_name(
self.get_hypervisor_version(), is_block_dev=True)
conf.driver_format = “raw”
nova/compute/manager.py:
def _finish_resize():
……
nbs = (CONF.ebs_backend == ‘nbs’)
block_device_info = self._get_instance_volume_block_device_info(
context, instance, refresh_conn_info=True, is_nbs=nbs)
# re-attach nbs volumes if needed.
if nbs:
bdms = block_device_info.get(‘block_device_mapping’, [])
else:
bdms = []
same_host = (migration[‘source_compute’] == migration[‘dest_compute’])
# call nbs to re-attach volumes to this host if it is not resize to
# same host.
if nbs and bdms and not same_host:
host_ip = utils.get_host_ip_by_ifname(CONF.host_ip_ifname)
for bdm in bdms:
还是直接拿代码来说明,这里的提交是原型试验代码,有很多细节问题没有处理,但已经可以正常工作:https://scm.service.163.org/#/c/3090/。
这次的实现是增加了类似cinder的插件,主要增加了nova/volume/nbs.py模块,它的功能是模仿同一目录下的cinder.py来实现的,这样nova的其他代码只要把默认的volume api从cinder改为nbs,就可以直接调用,它主要调用了nova/volume/nbs_client.py,这个文件是之前已经实现了的,主要用来调用nbs的api,跟nbs服务打交道,实现查询卷信息、挂载卷到宿主机、从宿主机上卸载卷等各种需要nbs完成的操作;另外还在nova/virt/libvirt/volume.py模块里面增加了LibvirtNBSVolumeDriver,这个类主要是为libvirt生成挂盘所需要的xml文件,由于实际底层挂卷到宿主机是nbs的agent来负责的,所以这部分功能也不用加到这里了(其他volume服务有些是需要的)。
简单来说就是主要增加nbs交互的前端模块(与nbs api交互)和半个后端模块(与libvirt交互,缺少了nbs自己维护的agent那部分功能)。
nova/volume/__init__.py:
_volume_opts = [
oslo.config.cfg.StrOpt(‘ebs_backend’,
default=’cinder’,
help=’The backend type of ebs service, ‘
‘should be nbs or cinder’),
oslo.config.cfg.StrOpt(‘volume_api_class’,
default=’nova.volume.cinder.API’,
help=’The full class name of the ‘
‘volume API class to use’),
]
“””
Handles all requests relating to volumes + nbs.
“””
import datetime
from nova.db import base
from nova import exception
from nova.openstack.common.gettextutils import _
from nova.openstack.common import jsonutils
from nova.openstack.common import log as logging
from nova.volume import nbs_client
LOG = logging.getLogger(__name__)
NBS_CLIENT = None
def nbsclient():
global NBS_CLIENT
if NBS_CLIENT is None:
NBS_CLIENT = nbs_client.API()
return NBS_CLIENT
def _untranslate_volume_summary_view(context, vol):
“””Maps keys for volumes summary view.”””
d = {}
d[‘id’] = vol[‘volumeId’]
d[‘status’] = vol[‘status’]
d[‘size’] = vol[‘size’]
d[‘availability_zone’] = vol[‘availabilityZone’]
created_at = long(vol[‘createTime’]) / 1000
created_at = datetime.datetime.utcfromtimestamp(created_at)
created_at = created_at.strftime(“%Y-%m-%d %H:%M:%S”)
d[‘created_at’] = created_at
d[‘attach_time’] = “”
d[‘mountpoint’] = “”
if vol[‘attachments’]:
att = vol[‘attachments’][0]
d[‘attach_status’] = att[‘status’]
d[‘instance_uuid’] = att[‘instanceId’]
d[‘mountpoint’] = att[‘device’]
d[‘attach_time’] = att[‘attachTime’]
else:
d[‘attach_status’] = ‘detached’
d[‘display_name’] = vol[‘volumeName’]
d[‘display_description’] = vol[‘volumeName’]
# FIXME(wangpan): all nbs volumes are ‘share’ type, so we fix here to 0
d[‘volume_type_id’] = 0
d[‘snapshot_id’] = vol[‘snapshotId’]
# NOTE(wangpan): nbs volumes don’t have metadata attribute
d[‘volume_metadata’] = {}
# NOTE(wangpan): nbs volumes don’t have image metadata attribute now
return d
class API(base.Base):
“””API for interacting with the volume manager.”””
def get(self, context, volume_id):
item = nbsclient().get(context, volume_id)[‘volumes’][0]
return _untranslate_volume_summary_view(context, item)
def get_all(self, context, search_opts={}):
items = nbsclient().get(context)[‘volumes’]
rval = []
for item in items:
rval.append(_untranslate_volume_summary_view(context, item))
return rval
def check_attached(self, context, volume):
“””Raise exception if volume not in use.”””
if volume[‘status’] != “in-use”:
msg = _(“status must be ‘in-use'”)
raise exception.InvalidVolume(reason=msg)
def check_attach(self, context, volume, instance=None):
# TODO(vish): abstract status checking?
if volume[‘status’] != “available”:
msg = _(“status must be ‘available'”)
raise exception.InvalidVolume(reason=msg)
if volume[‘attach_status’] in (“attached”, “attachedInVM”):
msg = _(“already attached”)
raise exception.InvalidVolume(reason=msg)
def check_detach(self, context, volume):
# TODO(vish): abstract status checking?
if volume[‘status’] == “available”:
msg = _(“already detached”)
raise exception.InvalidVolume(reason=msg)
if volume[‘attach_status’] not in (“attached”, “attachedInVM”):
msg = _(“volume not attached”)
raise exception.InvalidVolume(reason=msg)
def reserve_volume(self, context, volume_id):
“””We do not need to reserve nbs volume now.”””
pass
def unreserve_volume(self, context, volume_id):
“””We do not need to unreserve nbs volume now.”””
pass
def begin_detaching(self, context, volume_id):
“””We do not need to notify nbs begin detaching volume now.”””
pass
def roll_detaching(self, context, volume_id):
“””We do not need to roll detaching nbs volume now.”””
pass
def attach(self, context, volume_id, instance_uuid, mountpoint):
“””We do not need to change volume state now.
We implement this operation in volume driver.
“””
pass
def post_attach(self, context, volume_id, instance_uuid,
mountpoint, host_ip):
“””Tell NBS manager attachment success.”””
device = jsonutils.loads(mountpoint)
return nbsclient().notify_nbs_libvirt_result(context, volume_id,
‘attach’, True, device=device[‘real_path’],
host_ip=host_ip, instance_uuid=instance_uuid)
def detach(self, context, volume_id):
“””We do not need to change volume state now.
We implement this operation in volume driver.
“””
pass
def initialize_connection(self, context, volume_id, connector):
“””We do attachment of nbs volume to host in the method.”””
instance_uuid = connector[‘instance_uuid’]
host_ip = connector[‘ip’]
device = jsonutils.loads(connector[‘device’])
real_path = device[‘real_path’]
result = nbsclient().attach(context, volume_id, instance_uuid,
host_ip, real_path)
if result is None:
raise exception.NbsException()
# check volume status, wait for nbs attaching finish
succ = nbsclient().wait_for_attached(context, volume_id,
instance_uuid)
if not succ:
raise exception.NbsTimeout()
# get host dev path and QoS params from nbs
return nbsclient().get_host_dev_and_qos_info(
context, volume_id, host_ip)
def terminate_connection(self, context, volume_id, connector):
“””We do detachment of nbs volume from host in the method.”””
host_ip = connector[‘ip’]
return nbsclient().detach(context, volume_id, host_ip)
def migrate_volume_completion(self, context, old_volume_id, new_volume_id,
error=False):
raise NotImplementedError()
def create(self, context, size, name, description, snapshot=None,
image_id=None, volume_type=None, metadata=None,
availability_zone=None):
“””We do not support create nbs volume now.”””
raise NotImplementedError()
def delete(self, context, volume_id):
“””We do not support delete nbs volume now.”””
raise NotImplementedError()
def update(self, context, volume_id, fields):
raise NotImplementedError()
def get_snapshot(self, context, snapshot_id):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
def get_all_snapshots(self, context):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
def create_snapshot(self, context, volume_id, name, description):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
def create_snapshot_force(self, context, volume_id, name, description):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
def delete_snapshot(self, context, snapshot_id):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
def get_volume_encryption_metadata(self, context, volume_id):
“””We do not support for encrypting nbs volume snapshot now.”””
return {}
def get_volume_metadata(self, context, volume_id):
raise NotImplementedError()
def delete_volume_metadata(self, context, volume_id, key):
raise NotImplementedError()
def update_volume_metadata(self, context, volume_id,
metadata, delete=False):
raise NotImplementedError()
def get_volume_metadata_value(self, volume_id, key):
raise NotImplementedError()
def update_snapshot_status(self, context, snapshot_id, status):
“””We do not support nbs volume snapshot now.”””
raise NotImplementedError()
nova/virt/libvirt.py:
cfg.ListOpt(‘libvirt_volume_drivers’,
default=[
‘iscsi=nova.virt.libvirt.volume.LibvirtISCSIVolumeDriver’,
‘iser=nova.virt.libvirt.volume.LibvirtISERVolumeDriver’,
‘local=nova.virt.libvirt.volume.LibvirtVolumeDriver’,
‘fake=nova.virt.libvirt.volume.LibvirtFakeVolumeDriver’,
‘rbd=nova.virt.libvirt.volume.LibvirtNetVolumeDriver’,
‘sheepdog=nova.virt.libvirt.volume.LibvirtNetVolumeDriver’,
‘nfs=nova.virt.libvirt.volume.LibvirtNFSVolumeDriver’,
‘aoe=nova.virt.libvirt.volume.LibvirtAOEVolumeDriver’,
‘glusterfs=’nova.virt.libvirt.volume.LibvirtGlusterfsVolumeDriver’,
‘fibre_channel=nova.virt.libvirt.volume.LibvirtFibreChannelVolumeDriver’,
‘scality=nova.virt.libvirt.volume.LibvirtScalityVolumeDriver’,
‘nbs=nova.virt.libvirt.volume.LibvirtNBSVolumeDriver’,
],
help=’Libvirt handlers for remote volumes.’),
nova/virt/libvirt/volume.py:
class LibvirtNBSVolumeDriver(LibvirtBaseVolumeDriver):
“””Driver to attach NetEase Block Service volume to libvirt.”””
def __init__(self, connection):
“””Create back-end to NBS.”””
super(LibvirtNBSVolumeDriver,
self).__init__(connection, is_block_dev=False)
def connect_volume(self, connection_info, disk_info):
“””Returns xml for libvirt.”””
import ipdb;ipdb.set_trace()
conf = super(LibvirtNBSVolumeDriver,
self).connect_volume(connection_info,
disk_info)
conf.source_type = ‘block’
conf.source_path = connection_info[‘host_dev’]
conf.slot = disk_info[‘device’][‘slot’]
return conf
def disconnect_volume(self, connection_info, disk_dev):
“””Disconnect the volume.”””
pass
剩下的工作主要包括:
之后又补充了和VMware的对比内容:
原文地址:http://aspirer2004.blog.163.com/blog/static/106764720136845622508/
本文主要是对Qemu guest agent调研结果的总结,主要内容如下:
为了叙述方便,下文中将用qga来代替Qemu guest agent。
qga是一个运行在虚拟机内部的普通应用程序(可执行文件名称默认为qemu-ga,服务名称默认为qemu-guest-agent),其目的是实现一种宿主机和虚拟机进行交互的方式,这种方式不依赖于网络,而是依赖于virtio-serial(默认首选方式)或者isa-serial,而QEMU则提供了串口设备的模拟及数据交换的通道,最终呈现出来的是一个串口设备(虚拟机内部)和一个unix socket文件(宿主机上)。
qga通过读写串口设备与宿主机上的socket通道进行交互,宿主机上可以使用普通的unix socket读写方式对socket文件进行读写,最终实现与qga的交互,交互的协议与qmp(QEMU Monitor Protocol)相同(简单来说就是使用JSON格式进行数据交换),串口设备的速率通常都较低,所以比较适合小数据量的交换。
QEMU virtio串口设备模拟参数:
/usr/bin/kvm(QEMU) \
……\
-device virtio-serial-pci,id=virtio-serial0,bus=pci.0,addr=0x6 \
-device isa-serial,chardev=charserial1,id=serial1 \
-chardev socket,id=charchannel0,path=/var/lib/libvirt/qemu/test.agent,server,nowait \
-device virtserialport,bus=virtio-serial0.0,nr=1,chardev=charchannel0,id=channel0,\
name=com.163.spice.0
通过上面的参数就可以在宿主机上生成一个unix socket文件,路径为:/var/lib/libvirt/qemu/test.agent,同时在虚拟机内部生成一个serial设备,名字为com.163.spice.0,设备路径为:/dev/vport0p1,映射出来的可读性比较好的路径为:/dev/virtio-ports/com.163.spice.0,可以在运行qga的时候通过-p参数指定读写这个设备。
Libvirt支持QEMU串口相关配置,所以上述参数已经可以通过libvirt进行配置,且更简单直观,配置方式如下:
<channel type=’unix’>
<source mode=’bind’ path=’/var/lib/libvirt/qemu/test.agent’/>
<target type=’virtio’ name=’com.163.spice.0’/>
</channel>
需要注意的是libvirt-qemu:kvm用户要有权限读写’/var/lib/libvirt/qemu/test.agent’。
参考资料:http://wiki.qemu.org/Features/QAPI/GuestAgent,http://wiki.libvirt.org/page/Qemu_guest_agent
目前qga最新版本为1.5.50,linux已经实现下面的所有功能,windows仅支持加*的那些功能:
参考资料:源码
qga功能扩展十分方便,只需要在qapi-schema.json文件中定义好功能名称、输入输出数据类型,然后在commands-posix.c里面增加对应的功能函数即可,下面的补丁即在qga中增加一个通过statvfs获取虚拟机磁盘空间信息的功能:
diff –git a/qga/commands-posix.c b/qga/commands-posix.c
index e199738..2f42a2f 100644
— a/qga/commands-posix.c
+++ b/qga/commands-posix.c
@@ -21,6 +21,7 @@
#include <stdio.h>
#include <string.h>
#include <sys/stat.h>
+#include <sys/statvfs.h>
#include <inttypes.h>
#include “qga/guest-agent-core.h”
#include “qga-qmp-commands.h”
@@ -1467,6 +1468,36 @@ void qmp_guest_fstrim(bool has_minimum, int64_t minimum, Error **err)
}
#endif
+GuestFileSystemStatistics *qmp_guest_get_statvfs(const char *path, Error **errp)
+{
+ int ret;
+ GuestFileSystemStatistics *fs_stat;
+ struct statvfs *buf;
+ buf = g_malloc0(sizeof(struct statvfs));
+
+
+ ret = statvfs(path, buf);
+ if (ret < 0) {
+ error_setg_errno(errp, errno, “Failed to get statvfs”);
+ return NULL;
+ }
+
+ fs_stat = g_malloc0(sizeof(GuestFileSystemStatistics));
+ fs_stat->f_bsize = buf->f_bsize;
+ fs_stat->f_frsize = buf->f_frsize;
+ fs_stat->f_blocks = buf->f_blocks;
+ fs_stat->f_bfree = buf->f_bfree;
+ fs_stat->f_bavail = buf->f_bavail;
+ fs_stat->f_files = buf->f_files;
+ fs_stat->f_ffree = buf->f_ffree;
+ fs_stat->f_favail = buf->f_favail;
+ fs_stat->f_fsid = buf->f_fsid;
+ fs_stat->f_flag = buf->f_flag;
+ fs_stat->f_namemax = buf->f_namemax;
+
+ return fs_stat;
+}
+
/* register init/cleanup routines for stateful command groups */
void ga_command_state_init(GAState *s, GACommandState *cs)
{
diff –git a/qga/qapi-schema.json b/qga/qapi-schema.json
index 7155b7a..a071c3f 100644
— a/qga/qapi-schema.json
+++ b/qga/qapi-schema.json
@@ -638,3 +638,52 @@
{ ‘command’: ‘guest-set-vcpus’,
‘data’: {‘vcpus’: [‘GuestLogicalProcessor’] },
‘returns’: ‘int’ }
+
+##
+# @GuestFileSystemStatistics:
+#
+# Information about guest file system statistics.
+#
+# @f_bsize: file system block size.
+#
+# @f_frsize: fragment size.
+#
+# @f_blocks: size of fs in f_frsize units.
+#
+# @f_bfree: free blocks.
+#
+# @f_bavail: free blocks for non-root.
+#
+# @f_files: inodes.
+#
+# @f_ffree: free inodes.
+#
+# @f_favail: free inodes for non-root.
+#
+# @f_fsid: file system id.
+#
+# @f_flag: mount flags
+#
+# @f_namemax: maximum filename length.
+#
+# Since 1.5.10(NetEase)
+##
+{ ‘type’: ‘GuestFileSystemStatistics’,
+ ‘data’: { ‘f_bsize’: ‘int’, ‘f_frsize’: ‘int’, ‘f_blocks’: ‘int’,
+ ‘f_bfree’: ‘int’, ‘f_bavail’: ‘int’, ‘f_files’: ‘int’,
+ ‘f_ffree’: ‘int’, ‘f_favail’: ‘int’, ‘f_fsid’: ‘int’,
+ ‘f_flag’: ‘int’, ‘f_namemax’: ‘int’} }
+
+##
+# @guest-get-statvfs:
+#
+# Get the information about guest file system statistics by statvfs.
+#
+# Returns: @GuestFileSystemStatistics.
+#
+# Since 1.5.10(NetEase)
+##
+{ ‘command’: ‘guest-get-statvfs’,
+ ‘data’: { ‘path’: ‘str’ },
+ ‘returns’: ‘GuestFileSystemStatistics’ }
+
中间复杂的类型定义代码,以及头文件包含关系处理都由一个python脚本在编译的时候动态生成出来,这对开发人员来说是非常方便的,开发人员在扩展功能的时候只需要关注输入、输出的数据类型,以及功能的函数内容即可。
参考资料:源码及guest-get-time功能提交记录
http://git.qemu.org/?p=qemu.git;a=commitdiff;h=6912e6a94cb0a1d650271103efbc3ac2299e4fd0
QEMU社区从2011年7月20号开始在QEMU代码仓库中增加qga功能,最近一次提交在2013年5月18号,总共有100多次提交记录,代码维护人员主要来自redhat和IBM,社区的活跃度不高,但是QEMU本身的提交记录从2003年至今已有27200多条,还是比较活跃的,qga的功能及代码都比较简单,也是活跃度不高的一个重要原因。
QEMU代码仓库地址:git clone git://git.qemu-project.org/qemu.git
qga代码位于QEMU代码的根目录下的qga目录中。
参考资料:代码仓库git log
目前云主机监控的实现方法是,在创建云主机的过程中,增加监控脚本及其配置文件、定时任务及监控信息推送配置文件的注入过程,包括四个文件,其中监控信息推送配置文件(/etc/vm_monitor/info)由管理平台根据云主机所属用户的注册信息以及监控平台相关配置生成,并传入创建云主机的API来实现文件的注入,监控脚本(/etc/vm_monitor/send_monitor_data.py)及其配置文件(/etc/vm_monitor/monitor_settings.xml)、定时任务文件(/etc/cron.d/inject_cron_job)是包含在NVS经过base64编码后的监控脚本文件inject_files.json中。
工作模式为,在root账户增加定时任务inject_cron_job,其中有一条任务为:root su -c ‘python /etc/vm_monitor/send_monitor_data.py’ > /dev/null 2>&1,也即每60s收集并推送一次监控信息给监控平台。
首先为每个云主机增加virtio-serial的配置,这个只需要修改生成libvirt配置文件的代码即可,并且应该可以提交给社区;其次需要在虚拟机内部安装qga服务;最后需要在宿主机上新增一个服务进程(这里暂定为monitor服务),用来通过与qga交互从云主机内部获取监控信息;总的模块交互流程如下:
图表 1 云主机创建流程中的监控相关操作
monitor服务单次监控信息获取及推送流程如下:
图表 2 单次监控数据获取及推送流程图
主要是心跳获取过程可以改为主动通过qga进行查询,而不是依赖注入的定时任务进行上报,这样会更准确及时一些。
可以用于保证快照操作的安全性*(不影响云主机正常运行,目前有潜在问题);可以通过扩展qga功能来保证文件系统一致性(sync功能)。
该agent的原理与qga完全相同,是redhat公司为自己的OVirt虚拟化管理平台开发的与虚拟机交互的方案,与qga不同之处在于redhat采用了python作为其guest agent的开发语言,其支持的协议也是基于JSON格式的,并且它支持部分windows系统(但是配置起来比较复杂),另外它没有提供通用的文件读写功能,对我们的监控实现来说比较麻烦。其支持的功能列表可以在其主页查看到:http://www.ovirt.org/Guest_Agent。