€•&Œsphinx.addnodes”Œdocument”“”)”}”(Œ rawsource”Œ”Œchildren”]”(Œtranslations”Œ LanguagesNode”“”)”}”(hhh]”(hŒpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ refdomain”Œstd”Œreftype”Œdoc”Œ reftarget”Œ5/translations/zh_CN/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ refdomain”h)Œreftype”h+Œ reftarget”Œ5/translations/zh_TW/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ refdomain”h)Œreftype”h+Œ reftarget”Œ5/translations/it_IT/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ refdomain”h)Œreftype”h+Œ reftarget”Œ5/translations/ja_JP/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ refdomain”h)Œreftype”h+Œ reftarget”Œ5/translations/ko_KR/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ refdomain”h)Œreftype”h+Œ reftarget”Œ5/translations/sp_SP/virt/uml/user_mode_linux_howto_v2”Œmodname”NŒ classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h hhŒ _document”hŒsource”NŒline”NubhŒcomment”“”)”}”(hŒ SPDX-License-Identifier: GPL-2.0”h]”hŒ SPDX-License-Identifier: GPL-2.0”…””}”hh£sbah}”(h]”h ]”h"]”h$]”h&]”Œ xml:space”Œpreserve”uh1h¡hhhžhhŸŒO/var/lib/git/docbuild/linux/Documentation/virt/uml/user_mode_linux_howto_v2.rst”h KubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒ UML HowTo”h]”hŒ UML HowTo”…””}”(hh»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hh¶hžhhŸh³h KubhŒtopic”“”)”}”(hhh]”hŒbullet_list”“”)”}”(hhh]”(hŒ list_item”“”)”}”(hhh]”(hŒ paragraph”“”)”}”(hhh]”hŒ reference”“”)”}”(hhh]”hŒIntroduction”…””}”(hhßhžhhŸNh Nubah}”(h]”Œid1”ah ]”h"]”h$]”h&]”Œrefid”Œintroduction”uh1hÝhhÚubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhhÕubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ>How is UML Different from a VM using Virtualization package X?”…””}”(hhþhžhhŸNh Nubah}”(h]”Œid2”ah ]”h"]”h$]”h&]”Œrefid”Œ=how-is-uml-different-from-a-vm-using-virtualization-package-x”uh1hÝhhûubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhhøubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhõubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ!Why Would I Want User Mode Linux?”…””}”(hj hžhhŸNh Nubah}”(h]”Œid3”ah ]”h"]”h$]”h&]”Œrefid”Œ why-would-i-want-user-mode-linux”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhõubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒWhy not to run UML”…””}”(hjBhžhhŸNh Nubah}”(h]”Œid4”ah ]”h"]”h$]”h&]”Œrefid”Œwhy-not-to-run-uml”uh1hÝhj?ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj<ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhõubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhhÕubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒBuilding a UML instance”…””}”(hjphžhhŸNh Nubah}”(h]”Œid5”ah ]”h"]”h$]”h&]”Œrefid”Œbuilding-a-uml-instance”uh1hÝhjmubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjjubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒCreating an image”…””}”(hjhžhhŸNh Nubah}”(h]”Œid6”ah ]”h"]”h$]”h&]”Œrefid”Œcreating-an-image”uh1hÝhjŒubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj‰ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj†ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒEdit key system files”…””}”(hj±hžhhŸNh Nubah}”(h]”Œid7”ah ]”h"]”h$]”h&]”Œrefid”Œedit-key-system-files”uh1hÝhj®ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj«ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj†ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjjubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒSetting Up UML Networking”…””}”(hjßhžhhŸNh Nubah}”(h]”Œid8”ah ]”h"]”h$]”h&]”Œrefid”Œsetting-up-uml-networking”uh1hÝhjÜubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÙubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ Network configuration privileges”…””}”(hjþhžhhŸNh Nubah}”(h]”Œid9”ah ]”h"]”h$]”h&]”Œrefid”Œ network-configuration-privileges”uh1hÝhjûubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjøubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjõubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒConfiguring vector transports”…””}”(hj hžhhŸNh Nubah}”(h]”Œid10”ah ]”h"]”h$]”h&]”Œrefid”Œconfiguring-vector-transports”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒCommon options”…””}”(hj?hžhhŸNh Nubah}”(h]”Œid11”ah ]”h"]”h$]”h&]”Œrefid”Œcommon-options”uh1hÝhj<ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj9ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒShared Options”…””}”(hjahžhhŸNh Nubah}”(h]”Œid12”ah ]”h"]”h$]”h&]”Œrefid”Œshared-options”uh1hÝhj^ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj[ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ tap transport”…””}”(hjƒhžhhŸNh Nubah}”(h]”Œid13”ah ]”h"]”h$]”h&]”Œrefid”Œ tap-transport”uh1hÝhj€ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj}ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒhybrid transport”…””}”(hj¥hžhhŸNh Nubah}”(h]”Œid14”ah ]”h"]”h$]”h&]”Œrefid”Œhybrid-transport”uh1hÝhj¢ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjŸubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒraw socket transport”…””}”(hjÇhžhhŸNh Nubah}”(h]”Œid15”ah ]”h"]”h$]”h&]”Œrefid”Œraw-socket-transport”uh1hÝhjÄubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÁubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒGRE socket transport”…””}”(hjéhžhhŸNh Nubah}”(h]”Œid16”ah ]”h"]”h$]”h&]”Œrefid”Œgre-socket-transport”uh1hÝhjæubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjãubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒl2tpv3 socket transport”…””}”(hjhžhhŸNh Nubah}”(h]”Œid17”ah ]”h"]”h$]”h&]”Œrefid”Œl2tpv3-socket-transport”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒBESS socket transport”…””}”(hj-hžhhŸNh Nubah}”(h]”Œid18”ah ]”h"]”h$]”h&]”Œrefid”Œbess-socket-transport”uh1hÝhj*ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj'ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒVDE vector transport”…””}”(hjOhžhhŸNh Nubah}”(h]”Œid19”ah ]”h"]”h$]”h&]”Œrefid”Œvde-vector-transport”uh1hÝhjLubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjIubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj6ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjõubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒConfiguring Legacy transports”…””}”(hj}hžhhŸNh Nubah}”(h]”Œid20”ah ]”h"]”h$]”h&]”Œrefid”Œconfiguring-legacy-transports”uh1hÝhjzubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjwubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjõubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjÙubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒRunning UML”…””}”(hj«hžhhŸNh Nubah}”(h]”Œid21”ah ]”h"]”h$]”h&]”Œrefid”Œrunning-uml”uh1hÝhj¨ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj¥ubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ Arguments”…””}”(hjÊhžhhŸNh Nubah}”(h]”Œid22”ah ]”h"]”h$]”h&]”Œrefid”Œ arguments”uh1hÝhjÇubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÄubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒMandatory Arguments:”…””}”(hjéhžhhŸNh Nubah}”(h]”Œid23”ah ]”h"]”h$]”h&]”Œrefid”Œmandatory-arguments”uh1hÝhjæubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjãubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjàubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒImportant Optional Arguments”…””}”(hjhžhhŸNh Nubah}”(h]”Œid24”ah ]”h"]”h$]”h&]”Œrefid”Œimportant-optional-arguments”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjàubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjÄubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÁubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒStarting UML”…””}”(hj9hžhhŸNh Nubah}”(h]”Œid25”ah ]”h"]”h$]”h&]”Œrefid”Œstarting-uml”uh1hÝhj6ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj3ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÁubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ Logging in”…””}”(hj[hžhhŸNh Nubah}”(h]”Œid26”ah ]”h"]”h$]”h&]”Œrefid”Œ logging-in”uh1hÝhjXubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjUubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÁubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒThe UML Management Console”…””}”(hj}hžhhŸNh Nubah}”(h]”Œid27”ah ]”h"]”h$]”h&]”Œrefid”Œthe-uml-management-console”uh1hÝhjzubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjwubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒversion”…””}”(hjœhžhhŸNh Nubah}”(h]”Œid28”ah ]”h"]”h$]”h&]”Œrefid”Œversion”uh1hÝhj™ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj–ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒhelp”…””}”(hj¾hžhhŸNh Nubah}”(h]”Œid29”ah ]”h"]”h$]”h&]”Œrefid”Œhelp”uh1hÝhj»ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj¸ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒhalt and reboot”…””}”(hjàhžhhŸNh Nubah}”(h]”Œid30”ah ]”h"]”h$]”h&]”Œrefid”Œhalt-and-reboot”uh1hÝhjÝubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÚubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒconfig”…””}”(hjhžhhŸNh Nubah}”(h]”Œid31”ah ]”h"]”h$]”h&]”Œrefid”Œconfig”uh1hÝhjÿubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjüubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒremove”…””}”(hj$hžhhŸNh Nubah}”(h]”Œid32”ah ]”h"]”h$]”h&]”Œrefid”Œremove”uh1hÝhj!ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒsysrq”…””}”(hjFhžhhŸNh Nubah}”(h]”Œid33”ah ]”h"]”h$]”h&]”Œrefid”Œsysrq”uh1hÝhjCubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj@ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒcad”…””}”(hjhhžhhŸNh Nubah}”(h]”Œid34”ah ]”h"]”h$]”h&]”Œrefid”Œcad”uh1hÝhjeubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjbubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒstop”…””}”(hjŠhžhhŸNh Nubah}”(h]”Œid35”ah ]”h"]”h$]”h&]”Œrefid”Œstop”uh1hÝhj‡ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj„ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒgo”…””}”(hj¬hžhhŸNh Nubah}”(h]”Œid36”ah ]”h"]”h$]”h&]”Œrefid”Œgo”uh1hÝhj©ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj¦ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒproc”…””}”(hjÎhžhhŸNh Nubah}”(h]”Œid37”ah ]”h"]”h$]”h&]”Œrefid”Œproc”uh1hÝhjËubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÈubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒstack”…””}”(hjðhžhhŸNh Nubah}”(h]”Œid38”ah ]”h"]”h$]”h&]”Œrefid”Œstack”uh1hÝhjíubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjêubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj“ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjwubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÁubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhj¥ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒAdvanced UML Topics”…””}”(hj*hžhhŸNh Nubah}”(h]”Œid39”ah ]”h"]”h$]”h&]”Œrefid”Œadvanced-uml-topics”uh1hÝhj'ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj$ubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ,Sharing Filesystems between Virtual Machines”…””}”(hjIhžhhŸNh Nubah}”(h]”Œid40”ah ]”h"]”h$]”h&]”Œrefid”Œ,sharing-filesystems-between-virtual-machines”uh1hÝhjFubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjCubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒUsing layered block devices”…””}”(hjhhžhhŸNh Nubah}”(h]”Œid41”ah ]”h"]”h$]”h&]”Œrefid”Œusing-layered-block-devices”uh1hÝhjeubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjbubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj_ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ Disk Usage”…””}”(hjŠhžhhŸNh Nubah}”(h]”Œid42”ah ]”h"]”h$]”h&]”Œrefid”Œ disk-usage”uh1hÝhj‡ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj„ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj_ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ COW validity.”…””}”(hj¬hžhhŸNh Nubah}”(h]”Œid43”ah ]”h"]”h$]”h&]”Œrefid”Œcow-validity”uh1hÝhj©ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj¦ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj_ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒACows can moo - uml_moo : Merging a COW file with its backing file”…””}”(hjÎhžhhŸNh Nubah}”(h]”Œid44”ah ]”h"]”h$]”h&]”Œrefid”Œ=cows-can-moo-uml-moo-merging-a-cow-file-with-its-backing-file”uh1hÝhjËubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÈubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj_ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjCubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj@ubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒHost file access”…””}”(hjühžhhŸNh Nubah}”(h]”Œid45”ah ]”h"]”h$]”h&]”Œrefid”Œhost-file-access”uh1hÝhjùubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjöubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒUsing hostfs”…””}”(hjhžhhŸNh Nubah}”(h]”Œid46”ah ]”h"]”h$]”h&]”Œrefid”Œusing-hostfs”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒhostfs as the root filesystem”…””}”(hj=hžhhŸNh Nubah}”(h]”Œid47”ah ]”h"]”h$]”h&]”Œrefid”Œhostfs-as-the-root-filesystem”uh1hÝhj:ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj7ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒHostfs Caveats”…””}”(hj_hžhhŸNh Nubah}”(h]”Œid48”ah ]”h"]”h$]”h&]”Œrefid”Œhostfs-caveats”uh1hÝhj\ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjYubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjöubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj@ubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ Tuning UML”…””}”(hjhžhhŸNh Nubah}”(h]”Œid49”ah ]”h"]”h$]”h&]”Œrefid”Œ tuning-uml”uh1hÝhjŠubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj‡ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj@ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhj$ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒ+Contributing to UML and Developing with UML”…””}”(hj»hžhhŸNh Nubah}”(h]”Œid50”ah ]”h"]”h$]”h&]”Œrefid”Œ+contributing-to-uml-and-developing-with-uml”uh1hÝhj¸ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjµubhÏ)”}”(hhh]”(hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒTracing UML”…””}”(hjÚhžhhŸNh Nubah}”(h]”Œid51”ah ]”h"]”h$]”h&]”Œrefid”Œtracing-uml”uh1hÝhj×ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjÔubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÑubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒKernel debugging”…””}”(hjühžhhŸNh Nubah}”(h]”Œid52”ah ]”h"]”h$]”h&]”Œrefid”Œkernel-debugging”uh1hÝhjùubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjöubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÑubhÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒDeveloping Device Drivers”…””}”(hjhžhhŸNh Nubah}”(h]”Œid53”ah ]”h"]”h$]”h&]”Œrefid”Œdeveloping-device-drivers”uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÑubhÔ)”}”(hhh]”(hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒUsing UML as a Test Platform”…””}”(hj@hžhhŸNh Nubah}”(h]”Œid54”ah ]”h"]”h$]”h&]”Œrefid”Œusing-uml-as-a-test-platform”uh1hÝhj=ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhj:ubhÏ)”}”(hhh]”hÔ)”}”(hhh]”hÙ)”}”(hhh]”hÞ)”}”(hhh]”hŒSecurity Considerations”…””}”(hj_hžhhŸNh Nubah}”(h]”Œid55”ah ]”h"]”h$]”h&]”Œrefid”Œsecurity-considerations”uh1hÝhj\ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjYubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjVubah}”(h]”h ]”h"]”h$]”h&]”uh1hÎhj:ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÑubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhjµubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhhÐubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÎhhËhžhhŸNh Nubah}”(h]”Œcontents”ah ]”(Œcontents”Œlocal”eh"]”Œcontents”ah$]”h&]”uh1hÉhŸh³h Khh¶hžhubhµ)”}”(hhh]”(hº)”}”(hŒIntroduction”h]”hŒIntroduction”…””}”(hj¦hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefid”hèuh1h¹hj£hžhhŸh³h KubhÙ)”}”(hŒWelcome to User Mode Linux”h]”hŒWelcome to User Mode Linux”…””}”(hjµhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h K hj£hžhubhÙ)”}”(hŒŒUser Mode Linux is the first Open Source virtualization platform (first release date 1991) and second virtualization platform for an x86 PC.”h]”hŒŒUser Mode Linux is the first Open Source virtualization platform (first release date 1991) and second virtualization platform for an x86 PC.”…””}”(hjÃhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Khj£hžhubhµ)”}”(hhh]”(hº)”}”(hŒ>How is UML Different from a VM using Virtualization package X?”h]”hŒ>How is UML Different from a VM using Virtualization package X?”…””}”(hjÔhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´juh1h¹hjÑhžhhŸh³h KubhÙ)”}”(hX—We have come to assume that virtualization also means some level of hardware emulation. In fact, it does not. As long as a virtualization package provides the OS with devices which the OS can recognize and has a driver for, the devices do not need to emulate real hardware. Most OSes today have built-in support for a number of "fake" devices used only under virtualization. User Mode Linux takes this concept to the ultimate extreme - there is not a single real device in sight. It is 100% artificial or if we use the correct term 100% paravirtual. All UML devices are abstract concepts which map onto something provided by the host - files, sockets, pipes, etc.”h]”hX›We have come to assume that virtualization also means some level of hardware emulation. In fact, it does not. As long as a virtualization package provides the OS with devices which the OS can recognize and has a driver for, the devices do not need to emulate real hardware. Most OSes today have built-in support for a number of â€œfakeâ€ devices used only under virtualization. User Mode Linux takes this concept to the ultimate extreme - there is not a single real device in sight. It is 100% artificial or if we use the correct term 100% paravirtual. All UML devices are abstract concepts which map onto something provided by the host - files, sockets, pipes, etc.”…””}”(hjâhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KhjÑhžhubhÙ)”}”(hX\The other major difference between UML and various virtualization packages is that there is a distinct difference between the way the UML kernel and the UML programs operate. The UML kernel is just a process running on Linux - same as any other program. It can be run by an unprivileged user and it does not require anything in terms of special CPU features. The UML userspace, however, is a bit different. The Linux kernel on the host machine assists UML in intercepting everything the program running on a UML instance is trying to do and making the UML kernel handle all of its requests. This is different from other virtualization packages which do not make any difference between the guest kernel and guest programs. This difference results in a number of advantages and disadvantages of UML over let's say QEMU which we will cover later in this document.”h]”hX^The other major difference between UML and various virtualization packages is that there is a distinct difference between the way the UML kernel and the UML programs operate. The UML kernel is just a process running on Linux - same as any other program. It can be run by an unprivileged user and it does not require anything in terms of special CPU features. The UML userspace, however, is a bit different. The Linux kernel on the host machine assists UML in intercepting everything the program running on a UML instance is trying to do and making the UML kernel handle all of its requests. This is different from other virtualization packages which do not make any difference between the guest kernel and guest programs. This difference results in a number of advantages and disadvantages of UML over letâ€™s say QEMU which we will cover later in this document.”…””}”(hjðhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h K!hjÑhžhubeh}”(h]”j ah ]”h"]”Œ>how is uml different from a vm using virtualization package x?”ah$]”h&]”uh1h´hj£hžhhŸh³h Kubhµ)”}”(hhh]”(hº)”}”(hŒ!Why Would I Want User Mode Linux?”h]”hŒ!Why Would I Want User Mode Linux?”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j)uh1h¹hj hžhhŸh³h K2ubhÏ)”}”(hhh]”(hÔ)”}”(hŒÖIf User Mode Linux kernel crashes, your host kernel is still fine. It is not accelerated in any way (vhost, kvm, etc) and it is not trying to access any devices directly. It is, in fact, a process like any other. ”h]”hÙ)”}”(hŒÕIf User Mode Linux kernel crashes, your host kernel is still fine. It is not accelerated in any way (vhost, kvm, etc) and it is not trying to access any devices directly. It is, in fact, a process like any other.”h]”hŒÕIf User Mode Linux kernel crashes, your host kernel is still fine. It is not accelerated in any way (vhost, kvm, etc) and it is not trying to access any devices directly. It is, in fact, a process like any other.”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h K5hj ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj hžhhŸh³h NubhÔ)”}”(hŒuYou can run a usermode kernel as a non-root user (you may need to arrange appropriate permissions for some devices). ”h]”hÙ)”}”(hŒtYou can run a usermode kernel as a non-root user (you may need to arrange appropriate permissions for some devices).”h]”hŒtYou can run a usermode kernel as a non-root user (you may need to arrange appropriate permissions for some devices).”…””}”(hj5 hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h K9hj1 ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj hžhhŸh³h NubhÔ)”}”(hŒdYou can run a very small VM with a minimal footprint for a specific task (for example 32M or less). ”h]”hÙ)”}”(hŒcYou can run a very small VM with a minimal footprint for a specific task (for example 32M or less).”h]”hŒcYou can run a very small VM with a minimal footprint for a specific task (for example 32M or less).”…””}”(hjM hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h K 8Gbit”h]”hŒ> 8Gbit”…””}”(hj> hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÎhj; ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjóubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒhybrid”h]”hŒhybrid”…””}”(hj^ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÐhj[ ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjX ubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hju hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÐhjr ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjX ubj…)”}”(hhh]”hÙ)”}”(hŒchecksum, tso, multipacket rx”h]”hŒchecksum, tso, multipacket rx”…””}”(hjŒ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÐhj‰ ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjX ubj…)”}”(hhh]”hÙ)”}”(hŒ> 6GBit”h]”hŒ> 6GBit”…””}”(hj£ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÐhj ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjX ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒraw”h]”hŒraw”…””}”(hjÃ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÒhjÀ ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj½ ubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hjÚ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÒhj× ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj½ ubj…)”}”(hhh]”hÙ)”}”(hŒ"checksum, tso, multipacket rx, tx"”h]”hŒ$checksum, tso, multipacket rx, txâ€”…””}”(hjñ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÒhjî ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj½ ubj…)”}”(hhh]”hÙ)”}”(hŒ> 6GBit”h]”hŒ> 6GBit”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÒhjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj½ ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒEoGRE”h]”hŒEoGRE”…””}”(hj(hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÔhj%ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj"ubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hj?hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÔhj<ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj"ubj…)”}”(hhh]”hÙ)”}”(hŒmultipacket rx, tx”h]”hŒmultipacket rx, tx”…””}”(hjVhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÔhjSubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj"ubj…)”}”(hhh]”hÙ)”}”(hŒ> 3Gbit”h]”hŒ> 3Gbit”…””}”(hjmhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÔhjjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj"ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒEol2tpv3”h]”hŒEol2tpv3”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÖhjŠubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj‡ubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hj¤hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÖhj¡ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj‡ubj…)”}”(hhh]”hÙ)”}”(hŒmultipacket rx, tx”h]”hŒmultipacket rx, tx”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÖhj¸ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj‡ubj…)”}”(hhh]”hÙ)”}”(hŒ> 3Gbit”h]”hŒ> 3Gbit”…””}”(hjÒhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÖhjÏubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj‡ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒbess”h]”hŒbess”…””}”(hjòhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KØhjïubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjìubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjìubj…)”}”(hhh]”hÙ)”}”(hŒmultipacket rx, tx”h]”hŒmultipacket rx, tx”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KØhjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjìubj…)”}”(hhh]”hÙ)”}”(hŒ> 3Gbit”h]”hŒ> 3Gbit”…””}”(hj7hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KØhj4ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjìubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒfd”h]”hŒfd”…””}”(hjWhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÚhjTubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjQubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hjnhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÚhjkubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjQubj…)”}”(hhh]”hÙ)”}”(hŒdependent on fd type”h]”hŒdependent on fd type”…””}”(hj…hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÚhj‚ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjQubj…)”}”(hhh]”hÙ)”}”(hŒvaries”h]”hŒvaries”…””}”(hjœhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÚhj™ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjQubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒvde”h]”hŒvde”…””}”(hj¼hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÜhj¹ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¶ubj…)”}”(hhh]”hÙ)”}”(hŒvector”h]”hŒvector”…””}”(hjÓhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÜhjÐubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¶ubj…)”}”(hhh]”hÙ)”}”(hŒ!dep. on VDE VPN: Virt.Net Locator”h]”hŒ!dep. on VDE VPN: Virt.Net Locator”…””}”(hjêhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÜhjçubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¶ubj…)”}”(hhh]”hÙ)”}”(hŒvaries”h]”hŒvaries”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÜhjþubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¶ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒtuntap”h]”hŒtuntap”…””}”(hj!hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÞhjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjubj…)”}”(hhh]”hÙ)”}”(hŒlegacy”h]”hŒlegacy”…””}”(hj8hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÞhj5ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjubj…)”}”(hhh]”hÙ)”}”(hŒnone”h]”hŒnone”…””}”(hjOhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÞhjLubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjubj…)”}”(hhh]”hÙ)”}”(hŒ ~ 500Mbit”h]”hŒ ~ 500Mbit”…””}”(hjfhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KÞhjcubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒdaemon”h]”hŒdaemon”…””}”(hj†hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kàhjƒubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj€ubj…)”}”(hhh]”hÙ)”}”(hŒlegacy”h]”hŒlegacy”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kàhjšubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj€ubj…)”}”(hhh]”hÙ)”}”(hŒnone”h]”hŒnone”…””}”(hj´hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kàhj±ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj€ubj…)”}”(hhh]”hÙ)”}”(hŒ ~ 450Mbit”h]”hŒ ~ 450Mbit”…””}”(hjËhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KàhjÈubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj€ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒsocket”h]”hŒsocket”…””}”(hjëhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kâhjèubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjåubj…)”}”(hhh]”hÙ)”}”(hŒlegacy”h]”hŒlegacy”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kâhjÿubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjåubj…)”}”(hhh]”hÙ)”}”(hŒnone”h]”hŒnone”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kâhjubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjåubj…)”}”(hhh]”hÙ)”}”(hŒ ~ 450Mbit”h]”hŒ ~ 450Mbit”…””}”(hj0hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kâhj-ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjåubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒethertap”h]”hŒethertap”…””}”(hjPhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KähjMubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjJubj…)”}”(hhh]”hÙ)”}”(hŒlegacy”h]”hŒlegacy”…””}”(hjghžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kähjdubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjJubj…)”}”(hhh]”hÙ)”}”(hŒobsolete”h]”hŒobsolete”…””}”(hj~hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kähj{ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjJubj…)”}”(hhh]”hÙ)”}”(hŒ ~ 500Mbit”h]”hŒ ~ 500Mbit”…””}”(hj•hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kähj’ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hjJubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubj€)”}”(hhh]”(j…)”}”(hhh]”hÙ)”}”(hŒvde”h]”hŒvde”…””}”(hjµhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kæhj²ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¯ubj…)”}”(hhh]”hÙ)”}”(hŒlegacy”h]”hŒlegacy”…””}”(hjÌhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KæhjÉubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¯ubj…)”}”(hhh]”hÙ)”}”(hŒobsolete”h]”hŒobsolete”…””}”(hjãhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kæhjàubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¯ubj…)”}”(hhh]”hÙ)”}”(hŒ ~ 500Mbit”h]”hŒ ~ 500Mbit”…””}”(hjúhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kæhj÷ubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj¯ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jhjðubeh}”(h]”h ]”h"]”h$]”h&]”uh1jîhjMubeh}”(h]”h ]”h"]”h$]”h&]”Œcols”Kuh1jKhjHubah}”(h]”h ]”h"]”h$]”h&]”uh1jFhj'hžhhŸh³h NubhÏ)”}”(hhh]”(hÔ)”}”(hŒgAll transports which have tso and checksum offloads can deliver speeds approaching 10G on TCP streams. ”h]”hÙ)”}”(hŒfAll transports which have tso and checksum offloads can deliver speeds approaching 10G on TCP streams.”h]”hŒfAll transports which have tso and checksum offloads can deliver speeds approaching 10G on TCP streams.”…””}”(hj.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kéhj*ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h NubhÔ)”}”(hŒaAll transports which have multi-packet rx and/or tx can deliver pps rates of up to 1Mps or more. ”h]”hÙ)”}”(hŒ`All transports which have multi-packet rx and/or tx can deliver pps rates of up to 1Mps or more.”h]”hŒ`All transports which have multi-packet rx and/or tx can deliver pps rates of up to 1Mps or more.”…””}”(hjFhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KìhjBubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h NubhÔ)”}”(hŒIAll legacy transports are generally limited to ~600-700MBit and 0.05Mps. ”h]”hÙ)”}”(hŒHAll legacy transports are generally limited to ~600-700MBit and 0.05Mps.”h]”hŒHAll legacy transports are generally limited to ~600-700MBit and 0.05Mps.”…””}”(hj^hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KïhjZubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h NubhÔ)”}”(hŒ}GRE and L2TPv3 allow connections to all of: local machine, remote machines, remote network devices and remote UML instances. ”h]”hÙ)”}”(hŒ|GRE and L2TPv3 allow connections to all of: local machine, remote machines, remote network devices and remote UML instances.”h]”hŒ|GRE and L2TPv3 allow connections to all of: local machine, remote machines, remote network devices and remote UML instances.”…””}”(hjvhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Kñhjrubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h NubhÔ)”}”(hŒ6Socket allows connections only between UML instances. ”h]”hÙ)”}”(hŒ5Socket allows connections only between UML instances.”h]”hŒ5Socket allows connections only between UML instances.”…””}”(hjŽhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KôhjŠubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h NubhÔ)”}”(hŒcDaemon and bess require running a local switch. This switch may be connected to the host as well. ”h]”hÙ)”}”(hŒaDaemon and bess require running a local switch. This switch may be connected to the host as well.”h]”hŒaDaemon and bess require running a local switch. This switch may be connected to the host as well.”…””}”(hj¦hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Köhj¢ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj'hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h Kéhj'hžhubhµ)”}”(hhh]”(hº)”}”(hŒ Network configuration privileges”h]”hŒ Network configuration privileges”…””}”(hjÃhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´juh1h¹hjÀhžhhŸh³h KûubhÙ)”}”(hŒÊThe majority of the supported networking modes need ``root`` privileges. For example, in the legacy tuntap networking mode, users were required to be part of the group associated with the tunnel device.”h]”(hŒ4The majority of the supported networking modes need ”…””}”(hjÑhžhhŸNh Nubj¡ )”}”(hŒ``root``”h]”hŒroot”…””}”(hjÙhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÑubhŒŽ privileges. For example, in the legacy tuntap networking mode, users were required to be part of the group associated with the tunnel device.”…””}”(hjÑhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h KýhjÀhžhubhÙ)”}”(hŒ¥For newer network drivers like the vector transports, ``root`` privilege is required to fire an ioctl to setup the tun interface and/or use raw sockets where needed.”h]”(hŒ6For newer network drivers like the vector transports, ”…””}”(hjñhžhhŸNh Nubj¡ )”}”(hŒ``root``”h]”hŒroot”…””}”(hjùhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjñubhŒg privilege is required to fire an ioctl to setup the tun interface and/or use raw sockets where needed.”…””}”(hjñhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjÀhžhubhÙ)”}”(hX)This can be achieved by granting the user a particular capability instead of running UML as root. In case of vector transport, a user can add the capability ``CAP_NET_ADMIN`` or ``CAP_NET_RAW`` to the uml binary. Thenceforth, UML can be run with normal user privilges, along with full networking.”h]”(hŒžThis can be achieved by granting the user a particular capability instead of running UML as root. In case of vector transport, a user can add the capability ”…””}”(hjhžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_ADMIN``”h]”hŒ CAP_NET_ADMIN”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhŒ or ”…””}”(hjhžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_RAW``”h]”hŒCAP_NET_RAW”…””}”(hj+hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhŒg to the uml binary. Thenceforth, UML can be run with normal user privilges, along with full networking.”…””}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjÀhžhubhÙ)”}”(hŒ For example::”h]”hŒFor example:”…””}”(hjChžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjÀhžhubj‰ )”}”(hŒ0# sudo setcap cap_net_raw,cap_net_admin+ep linux”h]”hŒ0# sudo setcap cap_net_raw,cap_net_admin+ep linux”…””}”hjQsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h M hjÀhžhubeh}”(h]”j ah ]”h"]”Œ network configuration privileges”ah$]”h&]”uh1h´hj'hžhhŸh³h Kûubhµ)”}”(hhh]”(hº)”}”(hŒConfiguring vector transports”h]”hŒConfiguring vector transports”…””}”(hjihžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j)uh1h¹hjfhžhhŸh³h MubhÙ)”}”(hŒ/All vector transports support a similar syntax:”h]”hŒ/All vector transports support a similar syntax:”…””}”(hjwhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjfhžhubhÙ)”}”(hŒ]If X is the interface number as in vec0, vec1, vec2, etc, the general syntax for options is::”h]”hŒ\If X is the interface number as in vec0, vec1, vec2, etc, the general syntax for options is:”…””}”(hj…hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjfhžhubj‰ )”}”(hŒJvecX:transport="Transport Name",option=value,option=value,...,option=value”h]”hŒJvecX:transport="Transport Name",option=value,option=value,...,option=value”…””}”hj“sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h Mhjfhžhubhµ)”}”(hhh]”(hº)”}”(hŒCommon options”h]”hŒCommon options”…””}”(hj¤hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jHuh1h¹hj¡hžhhŸh³h MubhÙ)”}”(hŒ,These options are common for all transports:”h]”hŒ,These options are common for all transports:”…””}”(hj²hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhj¡hžhubhÏ)”}”(hhh]”(hÔ)”}”(hX-``depth=int`` - sets the queue depth for vector IO. This is the amount of packets UML will attempt to read or write in a single system call. The default number is 64 and is generally sufficient for most applications that need throughput in the 2-4 Gbit range. Higher speeds may require larger values. ”h]”hÙ)”}”(hX,``depth=int`` - sets the queue depth for vector IO. This is the amount of packets UML will attempt to read or write in a single system call. The default number is 64 and is generally sufficient for most applications that need throughput in the 2-4 Gbit range. Higher speeds may require larger values.”h]”(j¡ )”}”(hŒ ``depth=int``”h]”hŒ depth=int”…””}”(hjËhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÇubhX - sets the queue depth for vector IO. This is the amount of packets UML will attempt to read or write in a single system call. The default number is 64 and is generally sufficient for most applications that need throughput in the 2-4 Gbit range. Higher speeds may require larger values.”…””}”(hjÇhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjÃubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h NubhÔ)”}”(hŒ?``mac=XX:XX:XX:XX:XX`` - sets the interface MAC address value. ”h]”hÙ)”}”(hŒ>``mac=XX:XX:XX:XX:XX`` - sets the interface MAC address value.”h]”(j¡ )”}”(hŒ``mac=XX:XX:XX:XX:XX``”h]”hŒmac=XX:XX:XX:XX:XX”…””}”(hjñhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjíubhŒ( - sets the interface MAC address value.”…””}”(hjíhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M$hjéubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h NubhÔ)”}”(hXX``gro=[0,1]`` - sets GRO off or on. Enables receive/transmit offloads. The effect of this option depends on the host side support in the transport which is being configured. In most cases it will enable TCP segmentation and RX/TX checksumming offloads. The setting must be identical on the host side and the UML side. The UML kernel will produce warnings if it is not. For example, GRO is enabled by default on local machine interfaces (e.g. veth pairs, bridge, etc), so it should be enabled in UML in the corresponding UML transports (raw, tap, hybrid) in order for networking to operate correctly. ”h]”hÙ)”}”(hXW``gro=[0,1]`` - sets GRO off or on. Enables receive/transmit offloads. The effect of this option depends on the host side support in the transport which is being configured. In most cases it will enable TCP segmentation and RX/TX checksumming offloads. The setting must be identical on the host side and the UML side. The UML kernel will produce warnings if it is not. For example, GRO is enabled by default on local machine interfaces (e.g. veth pairs, bridge, etc), so it should be enabled in UML in the corresponding UML transports (raw, tap, hybrid) in order for networking to operate correctly.”h]”(j¡ )”}”(hŒ ``gro=[0,1]``”h]”hŒ gro=[0,1]”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhXJ - sets GRO off or on. Enables receive/transmit offloads. The effect of this option depends on the host side support in the transport which is being configured. In most cases it will enable TCP segmentation and RX/TX checksumming offloads. The setting must be identical on the host side and the UML side. The UML kernel will produce warnings if it is not. For example, GRO is enabled by default on local machine interfaces (e.g. veth pairs, bridge, etc), so it should be enabled in UML in the corresponding UML transports (raw, tap, hybrid) in order for networking to operate correctly.”…””}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M&hjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h NubhÔ)”}”(hŒ%``mtu=int`` - sets the interface MTU ”h]”hÙ)”}”(hŒ$``mtu=int`` - sets the interface MTU”h]”(j¡ )”}”(hŒ``mtu=int``”h]”hŒmtu=int”…””}”(hj=hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj9ubhŒ - sets the interface MTU”…””}”(hj9hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M0hj5ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h NubhÔ)”}”(hŒ‰``headroom=int`` - adjusts the default headroom (32 bytes) reserved if a packet will need to be re-encapsulated into for instance VXLAN. ”h]”hÙ)”}”(hŒˆ``headroom=int`` - adjusts the default headroom (32 bytes) reserved if a packet will need to be re-encapsulated into for instance VXLAN.”h]”(j¡ )”}”(hŒ``headroom=int``”h]”hŒheadroom=int”…””}”(hjchžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj_ubhŒx - adjusts the default headroom (32 bytes) reserved if a packet will need to be re-encapsulated into for instance VXLAN.”…””}”(hj_hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M2hj[ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h NubhÔ)”}”(hŒJ``vec=0`` - disable multipacket IO and fall back to packet at a time mode ”h]”hÙ)”}”(hŒI``vec=0`` - disable multipacket IO and fall back to packet at a time mode”h]”(j¡ )”}”(hŒ ``vec=0``”h]”hŒvec=0”…””}”(hj‰hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj…ubhŒ@ - disable multipacket IO and fall back to packet at a time mode”…””}”(hj…hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M5hjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÀhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h Mhj¡hžhubeh}”(h]”jNah ]”h"]”Œcommon options”ah$]”h&]”uh1h´hjfhžhhŸh³h Mubhµ)”}”(hhh]”(hº)”}”(hŒShared Options”h]”hŒShared Options”…””}”(hj·hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jjuh1h¹hj´hžhhŸh³h M9ubhÏ)”}”(hhh]”(hÔ)”}”(hŒ``ifname=str`` Transports which bind to a local network interface have a shared option - the name of the interface to bind to. ”h]”hÙ)”}”(hŒ~``ifname=str`` Transports which bind to a local network interface have a shared option - the name of the interface to bind to.”h]”(j¡ )”}”(hŒ``ifname=str``”h]”hŒ ifname=str”…””}”(hjÐhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÌubhŒp Transports which bind to a local network interface have a shared option - the name of the interface to bind to.”…””}”(hjÌhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M;hjÈubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÅhžhhŸh³h NubhÔ)”}”(hŒ·``src, dst, src_port, dst_port`` - all transports which use sockets which have the notion of source and destination and/or source port and destination port use these to specify them. ”h]”hÙ)”}”(hŒ¶``src, dst, src_port, dst_port`` - all transports which use sockets which have the notion of source and destination and/or source port and destination port use these to specify them.”h]”(j¡ )”}”(hŒ ``src, dst, src_port, dst_port``”h]”hŒsrc, dst, src_port, dst_port”…””}”(hjöhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjòubhŒ– - all transports which use sockets which have the notion of source and destination and/or source port and destination port use these to specify them.”…””}”(hjòhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M>hjîubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÅhžhhŸh³h NubhÔ)”}”(hXu``v6=[0,1]`` to specify if a v6 connection is desired for all transports which operate over IP. Additionally, for transports that have some differences in the way they operate over v4 and v6 (for example EoL2TPv3), sets the correct mode of operation. In the absence of this option, the socket type is determined based on what do the src and dst arguments resolve/parse to. ”h]”hÙ)”}”(hXt``v6=[0,1]`` to specify if a v6 connection is desired for all transports which operate over IP. Additionally, for transports that have some differences in the way they operate over v4 and v6 (for example EoL2TPv3), sets the correct mode of operation. In the absence of this option, the socket type is determined based on what do the src and dst arguments resolve/parse to.”h]”(j¡ )”}”(hŒ``v6=[0,1]``”h]”hŒv6=[0,1]”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhXh to specify if a v6 connection is desired for all transports which operate over IP. Additionally, for transports that have some differences in the way they operate over v4 and v6 (for example EoL2TPv3), sets the correct mode of operation. In the absence of this option, the socket type is determined based on what do the src and dst arguments resolve/parse to.”…””•}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MBhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÅhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M;hj´hžhubeh}”(h]”jpah ]”h"]”Œshared options”ah$]”h&]”uh1h´hjfhžhhŸh³h M9ubhµ)”}”(hhh]”(hº)”}”(hŒ tap transport”h]”hŒ tap transport”…””}”(hjJhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jŒuh1h¹hjGhžhhŸh³h MJubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hjXhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MLhjGhžhubj‰ )”}”(hŒ.vecX:transport=tap,ifname=tap0,depth=128,gro=1”h]”hŒ.vecX:transport=tap,ifname=tap0,depth=128,gro=1”…””}”hjfsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MNhjGhžhubhÙ)”}”(hŒnThis will connect vec0 to tap0 on the host. Tap0 must already exist (for example created using tunctl) and UP.”h]”hŒnThis will connect vec0 to tap0 on the host. Tap0 must already exist (for example created using tunctl) and UP.”…””}”(hjthžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MPhjGhžhubhÙ)”}”(hŒÎtap0 can be configured as a point-to-point interface and given an IP address so that UML can talk to the host. Alternatively, it is possible to connect UML to a tap interface which is connected to a bridge.”h]”hŒÎtap0 can be configured as a point-to-point interface and given an IP address so that UML can talk to the host. Alternatively, it is possible to connect UML to a tap interface which is connected to a bridge.”…””}”(hj‚hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MShjGhžhubhÙ)”}”(hXœWhile tap relies on the vector infrastructure, it is not a true vector transport at this point, because Linux does not support multi-packet IO on tap file descriptors for normal userspace apps like UML. This is a privilege which is offered only to something which can hook up to it at kernel level via specialized interfaces like vhost-net. A vhost-net like helper for UML is planned at some point in the future.”h]”hXœWhile tap relies on the vector infrastructure, it is not a true vector transport at this point, because Linux does not support multi-packet IO on tap file descriptors for normal userspace apps like UML. This is a privilege which is offered only to something which can hook up to it at kernel level via specialized interfaces like vhost-net. A vhost-net like helper for UML is planned at some point in the future.”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MWhjGhžhubhÙ)”}”(hŒ3Privileges required: tap transport requires either:”h]”hŒ3Privileges required: tap transport requires either:”…””}”(hjžhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M^hjGhžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒ€tap interface to exist and be created persistent and owned by the UML user using tunctl. Example ``tunctl -u uml-user -t tap0`` ”h]”hÙ)”}”(hŒtap interface to exist and be created persistent and owned by the UML user using tunctl. Example ``tunctl -u uml-user -t tap0``”h]”(hŒatap interface to exist and be created persistent and owned by the UML user using tunctl. Example ”…””}”(hj³hžhhŸNh Nubj¡ )”}”(hŒ``tunctl -u uml-user -t tap0``”h]”hŒtunctl -u uml-user -t tap0”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj³ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M`hj¯ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¬hžhhŸh³h NubhÔ)”}”(hŒ+binary to have ``CAP_NET_ADMIN`` privilege ”h]”hÙ)”}”(hŒ*binary to have ``CAP_NET_ADMIN`` privilege”h]”(hŒbinary to have ”…””}”(hjÙhžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_ADMIN``”h]”hŒ CAP_NET_ADMIN”…””}”(hjáhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÙubhŒ privilege”…””}”(hjÙhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MchjÕubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¬hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M`hjGhžhubeh}”(h]”j’ah ]”h"]”Œ tap transport”ah$]”h&]”uh1h´hjfhžhhŸh³h MJubhµ)”}”(hhh]”(hº)”}”(hŒhybrid transport”h]”hŒhybrid transport”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j®uh1h¹hjhžhhŸh³h MfubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhhjhžhubj‰ )”}”(hŒ1vecX:transport=hybrid,ifname=tap0,depth=128,gro=1”h]”hŒ1vecX:transport=hybrid,ifname=tap0,depth=128,gro=1”…””}”hj+sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MjhjhžhubhÙ)”}”(hŒÎThis is an experimental/demo transport which couples tap for transmit and a raw socket for receive. The raw socket allows multi-packet receive resulting in significantly higher packet rates than normal tap.”h]”hŒÎThis is an experimental/demo transport which couples tap for transmit and a raw socket for receive. The raw socket allows multi-packet receive resulting in significantly higher packet rates than normal tap.”…””}”(hj9hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MlhjhžhubhÙ)”}”(hŒ‚Privileges required: hybrid requires ``CAP_NET_RAW`` capability by the UML user as well as the requirements for the tap transport.”h]”(hŒ%Privileges required: hybrid requires ”…””}”(hjGhžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_RAW``”h]”hŒCAP_NET_RAW”…””}”(hjOhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjGubhŒN capability by the UML user as well as the requirements for the tap transport.”…””}”(hjGhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mphjhžhubeh}”(h]”j´ah ]”h"]”Œhybrid transport”ah$]”h&]”uh1h´hjfhžhhŸh³h Mfubhµ)”}”(hhh]”(hº)”}”(hŒraw socket transport”h]”hŒraw socket transport”…””}”(hjqhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jÐuh1h¹hjnhžhhŸh³h MtubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mvhjnhžhubj‰ )”}”(hŒ1vecX:transport=raw,ifname=p-veth0,depth=128,gro=1”h]”hŒ1vecX:transport=raw,ifname=p-veth0,depth=128,gro=1”…””}”hjsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MxhjnhžhubhÙ)”}”(hŒØThis transport uses vector IO on raw sockets. While you can bind to any interface including a physical one, the most common use it to bind to the "peer" side of a veth pair with the other side configured on the host.”h]”hŒÜThis transport uses vector IO on raw sockets. While you can bind to any interface including a physical one, the most common use it to bind to the â€œpeerâ€ side of a veth pair with the other side configured on the host.”…””}”(hj›hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M{hjnhžhubhÙ)”}”(hŒ&Example host configuration for Debian:”h]”hŒ&Example host configuration for Debian:”…””}”(hj©hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M€hjnhžhubhÙ)”}”(hŒ**/etc/network/interfaces**::”h]”(jñ )”}”(hŒ**/etc/network/interfaces**”h]”hŒ/etc/network/interfaces”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jð hj·ubhŒ:”…””}”(hj·hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M‚hjnhžhubj‰ )”}”(hŒÍauto veth0 iface veth0 inet static address 192.168.4.1 netmask 255.255.255.252 broadcast 192.168.4.3 pre-up ip link add veth0 type veth peer name p-veth0 && \ ifconfig p-veth0 up”h]”hŒÍauto veth0 iface veth0 inet static address 192.168.4.1 netmask 255.255.255.252 broadcast 192.168.4.3 pre-up ip link add veth0 type veth peer name p-veth0 && \ ifconfig p-veth0 up”…””}”hjÓsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h M„hjnhžhubhÙ)”}”(hŒ'UML can now bind to p-veth0 like this::”h]”hŒ&UML can now bind to p-veth0 like this:”…””}”(hjáhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MŒhjnhžhubj‰ )”}”(hŒ1vec0:transport=raw,ifname=p-veth0,depth=128,gro=1”h]”hŒ1vec0:transport=raw,ifname=p-veth0,depth=128,gro=1”…””}”hjïsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MŽhjnhžhubhÙ)”}”(hŒpIf the UML guest is configured with 192.168.4.2 and netmask 255.255.255.0 it can talk to the host on 192.168.4.1”h]”hŒpIf the UML guest is configured with 192.168.4.2 and netmask 255.255.255.0 it can talk to the host on 192.168.4.1”…””}”(hjýhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M‘hjnhžhubhÙ)”}”(hŒThe raw transport also provides some support for offloading some of the filtering to the host. The two options to control it are:”h]”hŒThe raw transport also provides some support for offloading some of the filtering to the host. The two options to control it are:”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M”hjnhžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒI``bpffile=str`` filename of raw bpf code to be loaded as a socket filter ”h]”hÙ)”}”(hŒH``bpffile=str`` filename of raw bpf code to be loaded as a socket filter”h]”(j¡ )”}”(hŒ``bpffile=str``”h]”hŒbpffile=str”…””}”(hj$hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj ubhŒ9 filename of raw bpf code to be loaded as a socket filter”…””}”(hj hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M—hjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjhžhhŸh³h NubhÔ)”}”(hŒ™``bpfflash=int`` 0/1 allow loading of bpf from inside User Mode Linux. This option allows the use of the ethtool load firmware command to load bpf code. ”h]”hÙ)”}”(hŒ˜``bpfflash=int`` 0/1 allow loading of bpf from inside User Mode Linux. This option allows the use of the ethtool load firmware command to load bpf code.”h]”(j¡ )”}”(hŒ``bpfflash=int``”h]”hŒbpfflash=int”…””}”(hjJhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjFubhŒˆ 0/1 allow loading of bpf from inside User Mode Linux. This option allows the use of the ethtool load firmware command to load bpf code.”…””}”(hjFhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M™hjBubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M—hjnhžhubhÙ)”}”(hŒøIn either case the bpf code is loaded into the host kernel. While this is presently limited to legacy bpf syntax (not ebpf), it is still a security risk. It is not recommended to allow this unless the User Mode Linux instance is considered trusted.”h]”hŒøIn either case the bpf code is loaded into the host kernel. While this is presently limited to legacy bpf syntax (not ebpf), it is still a security risk. It is not recommended to allow this unless the User Mode Linux instance is considered trusted.”…””}”(hjnhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjnhžhubhÙ)”}”(hŒLPrivileges required: raw socket transport requires `CAP_NET_RAW` capability.”h]”(hŒ3Privileges required: raw socket transport requires ”…””}”(hj|hžhhŸNh NubhŒtitle_reference”“”)”}”(hŒ `CAP_NET_RAW`”h]”hŒCAP_NET_RAW”…””}”(hj†hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj|ubhŒ capability.”…””}”(hj|hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M¢hjnhžhubeh}”(h]”jÖah ]”h"]”Œraw socket transport”ah$]”h&]”uh1h´hjfhžhhŸh³h Mtubhµ)”}”(hhh]”(hº)”}”(hŒGRE socket transport”h]”hŒGRE socket transport”…””}”(hj¨hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jòuh1h¹hj¥hžhhŸh³h M¦ubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hj¶hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M¨hj¥hžhubj‰ )”}”(hŒ.vecX:transport=gre,src=$src_host,dst=$dst_host”h]”hŒ.vecX:transport=gre,src=$src_host,dst=$dst_host”…””}”hjÄsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h Mªhj¥hžhubhÙ)”}”(hŒÑThis will configure an Ethernet over ``GRE`` (aka ``GRETAP`` or ``GREIRB``) tunnel which will connect the UML instance to a ``GRE`` endpoint at host dst_host. ``GRE`` supports the following additional options:”h]”(hŒ%This will configure an Ethernet over ”…””}”(hjÒhžhhŸNh Nubj¡ )”}”(hŒ``GRE``”h]”hŒGRE”…””}”(hjÚhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÒubhŒ (aka ”…””}”(hjÒhžhhŸNh Nubj¡ )”}”(hŒ ``GRETAP``”h]”hŒGRETAP”…””}”(hjìhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÒubhŒ or ”…””}”(hjÒhžhhŸNh Nubj¡ )”}”(hŒ ``GREIRB``”h]”hŒGREIRB”…””}”(hjþhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÒubhŒ2) tunnel which will connect the UML instance to a ”…””}”(hjÒhžhhŸNh Nubj¡ )”}”(hŒ``GRE``”h]”hŒGRE”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÒubhŒ endpoint at host dst_host. ”…””}”(hjÒhžhhŸNh Nubj¡ )”}”(hŒ``GRE``”h]”hŒGRE”…””}”(hj"hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÒubhŒ+ supports the following additional options:”…””}”(hjÒhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhj¥hžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒZ``rx_key=int`` - GRE 32-bit integer key for rx packets, if set, ``txkey`` must be set too ”h]”hÙ)”}”(hŒY``rx_key=int`` - GRE 32-bit integer key for rx packets, if set, ``txkey`` must be set too”h]”(j¡ )”}”(hŒ``rx_key=int``”h]”hŒ rx_key=int”…””}”(hjEhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjAubhŒ2 - GRE 32-bit integer key for rx packets, if set, ”…””}”(hjAhžhhŸNh Nubj¡ )”}”(hŒ ``txkey``”h]”hŒtxkey”…””}”(hjWhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjAubhŒ must be set too”…””}”(hjAhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M²hj=ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h NubhÔ)”}”(hŒZ``tx_key=int`` - GRE 32-bit integer key for tx packets, if set ``rx_key`` must be set too ”h]”hÙ)”}”(hŒY``tx_key=int`` - GRE 32-bit integer key for tx packets, if set ``rx_key`` must be set too”h]”(j¡ )”}”(hŒ``tx_key=int``”h]”hŒ tx_key=int”…””}”(hj}hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjyubhŒ1 - GRE 32-bit integer key for tx packets, if set ”…””}”(hjyhžhhŸNh Nubj¡ )”}”(hŒ ``rx_key``”h]”hŒrx_key”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjyubhŒ must be set too”…””}”(hjyhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mµhjuubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h NubhÔ)”}”(hŒ)``sequence=[0,1]`` - enable GRE sequence ”h]”hÙ)”}”(hŒ(``sequence=[0,1]`` - enable GRE sequence”h]”(j¡ )”}”(hŒ``sequence=[0,1]``”h]”hŒsequence=[0,1]”…””}”(hjµhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj±ubhŒ - enable GRE sequence”…””}”(hj±hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M¸hjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h NubhÔ)”}”(hŒ“``pin_sequence=[0,1]`` - pretend that the sequence is always reset on each packet (needed to interoperate with some really broken implementations) ”h]”hÙ)”}”(hŒ’``pin_sequence=[0,1]`` - pretend that the sequence is always reset on each packet (needed to interoperate with some really broken implementations)”h]”(j¡ )”}”(hŒ``pin_sequence=[0,1]``”h]”hŒpin_sequence=[0,1]”…””}”(hjÛhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj×ubhŒ| - pretend that the sequence is always reset on each packet (needed to interoperate with some really broken implementations)”…””}”(hj×hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MºhjÓubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h NubhÔ)”}”(hŒ7``v6=[0,1]`` - force IPv4 or IPv6 sockets respectively ”h]”hÙ)”}”(hŒ6``v6=[0,1]`` - force IPv4 or IPv6 sockets respectively”h]”(j¡ )”}”(hŒ``v6=[0,1]``”h]”hŒv6=[0,1]”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjýubhŒ* - force IPv4 or IPv6 sockets respectively”…””}”(hjýhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M¾hjùubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h NubhÔ)”}”(hŒ(GRE checksum is not presently supported ”h]”hÙ)”}”(hŒ'GRE checksum is not presently supported”h]”hŒ'GRE checksum is not presently supported”…””}”(hj#hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÀhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj:hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M²hj¥hžhubhÙ)”}”(hŒGRE has a number of caveats:”h]”hŒGRE has a number of caveats:”…””}”(hj=hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÂhj¥hžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒœYou can use only one GRE connection per IP address. There is no way to multiplex connections as each GRE tunnel is terminated directly on the UML instance. ”h]”hÙ)”}”(hŒ›You can use only one GRE connection per IP address. There is no way to multiplex connections as each GRE tunnel is terminated directly on the UML instance.”h]”hŒ›You can use only one GRE connection per IP address. There is no way to multiplex connections as each GRE tunnel is terminated directly on the UML instance.”…””}”(hjRhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÄhjNubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjKhžhhŸh³h NubhÔ)”}”(hŒ¶The key is not really a security feature. While it was intended as such its "security" is laughable. It is, however, a useful feature to ensure that the tunnel is not misconfigured. ”h]”hÙ)”}”(hŒµThe key is not really a security feature. While it was intended as such its "security" is laughable. It is, however, a useful feature to ensure that the tunnel is not misconfigured.”h]”hŒ¹The key is not really a security feature. While it was intended as such its â€œsecurityâ€ is laughable. It is, however, a useful feature to ensure that the tunnel is not misconfigured.”…””}”(hjjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÈhjfubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjKhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h MÄhj¥hžhubhÙ)”}”(hŒ}An example configuration for a Linux host with a local address of 192.168.128.1 to connect to a UML instance at 192.168.129.1”h]”hŒ}An example configuration for a Linux host with a local address of 192.168.128.1 to connect to a UML instance at 192.168.129.1”…””}”(hj„hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÌhj¥hžhubhÙ)”}”(hŒ**/etc/network/interfaces**::”h]”(jñ )”}”(hŒ**/etc/network/interfaces**”h]”hŒ/etc/network/interfaces”…””}”(hj–hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jð hj’ubhŒ:”…””}”(hj’hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÏhj¥hžhubj‰ )”}”(hŒäauto gt0 iface gt0 inet static address 10.0.0.1 netmask 255.255.255.0 broadcast 10.0.0.255 mtu 1500 pre-up ip link add gt0 type gretap local 192.168.128.1 \ remote 192.168.129.1 || true down ip link del gt0 || true”h]”hŒäauto gt0 iface gt0 inet static address 10.0.0.1 netmask 255.255.255.0 broadcast 10.0.0.255 mtu 1500 pre-up ip link add gt0 type gretap local 192.168.128.1 \ remote 192.168.129.1 || true down ip link del gt0 || true”…””}”hj®sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MÑhj¥hžhubhÙ)”}”(hŒHAdditionally, GRE has been tested versus a variety of network equipment.”h]”hŒHAdditionally, GRE has been tested versus a variety of network equipment.”…””}”(hj¼hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÛhj¥hžhubhÙ)”}”(hŒ1Privileges required: GRE requires ``CAP_NET_RAW``”h]”(hŒ"Privileges required: GRE requires ”…””}”(hjÊhžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_RAW``”h]”hŒCAP_NET_RAW”…””}”(hjÒhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjÊubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÝhj¥hžhubeh}”(h]”jøah ]”h"]”Œgre socket transport”ah$]”h&]”uh1h´hjfhžhhŸh³h M¦ubhµ)”}”(hhh]”(hº)”}”(hŒl2tpv3 socket transport”h]”hŒl2tpv3 socket transport”…””}”(hjðhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´juh1h¹hjíhžhhŸh³h MàubhÙ)”}”(hX_Warning_. L2TPv3 has a "bug". It is the "bug" known as "has more options than GNU ls". While it has some advantages, there are usually easier (and less verbose) ways to connect a UML instance to something. For example, most devices which support L2TPv3 also support GRE.”h]”hX_Warning_. L2TPv3 has a â€œbugâ€. It is the â€œbugâ€ known as â€œhas more options than GNU lsâ€. While it has some advantages, there are usually easier (and less verbose) ways to connect a UML instance to something. For example, most devices which support L2TPv3 also support GRE.”…””}”(hjþhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MâhjíhžhubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mçhjíhžhubj‰ )”}”(hŒvec0:transport=l2tpv3,udp=1,src=$src_host,dst=$dst_host,srcport=$src_port,dstport=$dst_port,depth=128,rx_session=0xffffffff,tx_session=0xffff”h]”hŒvec0:transport=l2tpv3,udp=1,src=$src_host,dst=$dst_host,srcport=$src_port,dstport=$dst_port,depth=128,rx_session=0xffffffff,tx_session=0xffff”…””}”hjsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MéhjíhžhubhÙ)”}”(hŒÄThis will configure an Ethernet over L2TPv3 fixed tunnel which will connect the UML instance to a L2TPv3 endpoint at host $dst_host using the L2TPv3 UDP flavour and UDP destination port $dst_port.”h]”hŒÄThis will configure an Ethernet over L2TPv3 fixed tunnel which will connect the UML instance to a L2TPv3 endpoint at host $dst_host using the L2TPv3 UDP flavour and UDP destination port $dst_port.”…””}”(hj(hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MëhjíhžhubhÙ)”}”(hŒ8L2TPv3 always requires the following additional options:”h]”hŒ8L2TPv3 always requires the following additional options:”…””}”(hj6hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MïhjíhžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒB``rx_session=int`` - l2tpv3 32-bit integer session for rx packets ”h]”hÙ)”}”(hŒA``rx_session=int`` - l2tpv3 32-bit integer session for rx packets”h]”(j¡ )”}”(hŒ``rx_session=int``”h]”hŒrx_session=int”…””}”(hjOhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjKubhŒ/ - l2tpv3 32-bit integer session for rx packets”…””}”(hjKhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MñhjGubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjDhžhhŸh³h NubhÔ)”}”(hŒB``tx_session=int`` - l2tpv3 32-bit integer session for tx packets ”h]”hÙ)”}”(hŒA``tx_session=int`` - l2tpv3 32-bit integer session for tx packets”h]”(j¡ )”}”(hŒ``tx_session=int``”h]”hŒtx_session=int”…””}”(hjuhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjqubhŒ/ - l2tpv3 32-bit integer session for tx packets”…””}”(hjqhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Móhjmubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjDhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h MñhjíhžhubhÙ)”}”(hŒXAs the tunnel is fixed these are not negotiated and they are preconfigured on both ends.”h]”hŒXAs the tunnel is fixed these are not negotiated and they are preconfigured on both ends.”…””}”(hj™hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MõhjíhžhubhÙ)”}”(hŒ@Additionally, L2TPv3 supports the following optional parameters.”h]”hŒ@Additionally, L2TPv3 supports the following optional parameters.”…””}”(hj§hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MøhjíhžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒŸ``rx_cookie=int`` - l2tpv3 32-bit integer cookie for rx packets - same functionality as GRE key, more to prevent misconfiguration than provide actual security ”h]”hÙ)”}”(hŒž``rx_cookie=int`` - l2tpv3 32-bit integer cookie for rx packets - same functionality as GRE key, more to prevent misconfiguration than provide actual security”h]”(j¡ )”}”(hŒ``rx_cookie=int``”h]”hŒ rx_cookie=int”…””}”(hjÀhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj¼ubhŒ - l2tpv3 32-bit integer cookie for rx packets - same functionality as GRE key, more to prevent misconfiguration than provide actual security”…””}”(hj¼hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Múhj¸ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒ@``tx_cookie=int`` - l2tpv3 32-bit integer cookie for tx packets ”h]”hÙ)”}”(hŒ?``tx_cookie=int`` - l2tpv3 32-bit integer cookie for tx packets”h]”(j¡ )”}”(hŒ``tx_cookie=int``”h]”hŒ tx_cookie=int”…””}”(hjæhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjâubhŒ. - l2tpv3 32-bit integer cookie for tx packets”…””}”(hjâhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MþhjÞubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒ;``cookie64=[0,1]`` - use 64-bit cookies instead of 32-bit. ”h]”hÙ)”}”(hŒ:``cookie64=[0,1]`` - use 64-bit cookies instead of 32-bit.”h]”(j¡ )”}”(hŒ``cookie64=[0,1]``”h]”hŒcookie64=[0,1]”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhŒ( - use 64-bit cookies instead of 32-bit.”…””}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒ*``counter=[0,1]`` - enable l2tpv3 counter ”h]”hÙ)”}”(hŒ)``counter=[0,1]`` - enable l2tpv3 counter”h]”(j¡ )”}”(hŒ``counter=[0,1]``”h]”hŒ counter=[0,1]”…””}”(hj2hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj.ubhŒ - enable l2tpv3 counter”…””}”(hj.hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhj*ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒ‘``pin_counter=[0,1]`` - pretend that the counter is always reset on each packet (needed to interoperate with some really broken implementations) ”h]”hÙ)”}”(hŒ``pin_counter=[0,1]`` - pretend that the counter is always reset on each packet (needed to interoperate with some really broken implementations)”h]”(j¡ )”}”(hŒ``pin_counter=[0,1]``”h]”hŒpin_counter=[0,1]”…””}”(hjXhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjTubhŒ{ - pretend that the counter is always reset on each packet (needed to interoperate with some really broken implementations)”…””}”(hjThžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjPubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒ ``v6=[0,1]`` - force v6 sockets ”h]”hÙ)”}”(hŒ``v6=[0,1]`` - force v6 sockets”h]”(j¡ )”}”(hŒ``v6=[0,1]``”h]”hŒv6=[0,1]”…””}”(hj~hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjzubhŒ - force v6 sockets”…””}”(hjzhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjvubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h NubhÔ)”}”(hŒG``udp=[0,1]`` - use raw sockets (0) or UDP (1) version of the protocol ”h]”hÙ)”}”(hŒF``udp=[0,1]`` - use raw sockets (0) or UDP (1) version of the protocol”h]”(j¡ )”}”(hŒ ``udp=[0,1]``”h]”hŒ udp=[0,1]”…””}”(hj¤hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj ubhŒ9 - use raw sockets (0) or UDP (1) version of the protocol”…””}”(hj hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M hjœubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjµhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h MúhjíhžhubhÙ)”}”(hŒL2TPv3 has a number of caveats:”h]”hŒL2TPv3 has a number of caveats:”…””}”(hjÈhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjíhžhubhÏ)”}”(hhh]”hÔ)”}”(hŒÚyou can use only one connection per IP address in raw mode. There is no way to multiplex connections as each L2TPv3 tunnel is terminated directly on the UML instance. UDP mode can use different ports for this purpose. ”h]”hÙ)”}”(hŒÙyou can use only one connection per IP address in raw mode. There is no way to multiplex connections as each L2TPv3 tunnel is terminated directly on the UML instance. UDP mode can use different ports for this purpose.”h]”hŒÙyou can use only one connection per IP address in raw mode. There is no way to multiplex connections as each L2TPv3 tunnel is terminated directly on the UML instance. UDP mode can use different ports for this purpose.”…””}”(hjÝhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjÙubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÖhžhhŸh³h Nubah}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h MhjíhžhubhÙ)”}”(hŒQHere is an example of how to configure a Linux host to connect to UML via L2TPv3:”h]”hŒQHere is an example of how to configure a Linux host to connect to UML via L2TPv3:”…””}”(hj÷hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjíhžhubhÙ)”}”(hŒ**/etc/network/interfaces**::”h]”(jñ )”}”(hŒ**/etc/network/interfaces**”h]”hŒ/etc/network/interfaces”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jð hjubhŒ:”…””}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjíhžhubj‰ )”}”(hXåauto l2tp1 iface l2tp1 inet static address 192.168.126.1 netmask 255.255.255.0 broadcast 192.168.126.255 mtu 1500 pre-up ip l2tp add tunnel remote 127.0.0.1 \ local 127.0.0.1 encap udp tunnel_id 2 \ peer_tunnel_id 2 udp_sport 1706 udp_dport 1707 && \ ip l2tp add session name l2tp1 tunnel_id 2 \ session_id 0xffffffff peer_session_id 0xffffffff down ip l2tp del session tunnel_id 2 session_id 0xffffffff && \ ip l2tp del tunnel tunnel_id 2”h]”hXåauto l2tp1 iface l2tp1 inet static address 192.168.126.1 netmask 255.255.255.0 broadcast 192.168.126.255 mtu 1500 pre-up ip l2tp add tunnel remote 127.0.0.1 \ local 127.0.0.1 encap udp tunnel_id 2 \ peer_tunnel_id 2 udp_sport 1706 udp_dport 1707 && \ ip l2tp add session name l2tp1 tunnel_id 2 \ session_id 0xffffffff peer_session_id 0xffffffff down ip l2tp del session tunnel_id 2 session_id 0xffffffff && \ ip l2tp del tunnel tunnel_id 2”…””}”hj!sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MhjíhžhubhÙ)”}”(hŒpPrivileges required: L2TPv3 requires ``CAP_NET_RAW`` for raw IP mode and no special privileges for the UDP mode.”h]”(hŒ%Privileges required: L2TPv3 requires ”…””}”(hj/hžhhŸNh Nubj¡ )”}”(hŒ``CAP_NET_RAW``”h]”hŒCAP_NET_RAW”…””}”(hj7hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj/ubhŒ< for raw IP mode and no special privileges for the UDP mode.”…””}”(hj/hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M'hjíhžhubeh}”(h]”jah ]”h"]”Œl2tpv3 socket transport”ah$]”h&]”uh1h´hjfhžhhŸh³h Màubhµ)”}”(hhh]”(hº)”}”(hŒBESS socket transport”h]”hŒBESS socket transport”…””}”(hjYhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j6uh1h¹hjVhžhhŸh³h M+ubhÙ)”}”(hŒ2BESS is a high performance modular network switch.”h]”hŒ2BESS is a high performance modular network switch.”…””}”(hjghžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M-hjVhžhubhÙ)”}”(hŒhttps://github.com/NetSys/bess”h]”hÞ)”}”(hjwh]”hŒhttps://github.com/NetSys/bess”…””}”(hjyhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”jwuh1hÝhjuubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M/hjVhžhubhÙ)”}”(hŒ„It has support for a simple sequential packet socket mode which in the more recent versions is using vector IO for high performance.”h]”hŒ„It has support for a simple sequential packet socket mode which in the more recent versions is using vector IO for high performance.”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M1hjVhžhubhÙ)”}”(hŒ Example::”h]”hŒExample:”…””}”(hj›hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M4hjVhžhubj‰ )”}”(hŒ/vecX:transport=bess,src=$unix_src,dst=$unix_dst”h]”hŒ/vecX:transport=bess,src=$unix_src,dst=$unix_dst”…””}”hj©sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h M6hjVhžhubhÙ)”}”(hŒˆThis will configure a BESS transport using the unix_src Unix domain socket address as source and unix_dst socket address as destination.”h]”hŒˆThis will configure a BESS transport using the unix_src Unix domain socket address as source and unix_dst socket address as destination.”…””}”(hj·hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M8hjVhžhubhÙ)”}”(hŒlFor BESS configuration and how to allocate a BESS Unix domain socket port please see the BESS documentation.”h]”hŒlFor BESS configuration and how to allocate a BESS Unix domain socket port please see the BESS documentation.”…””}”(hjÅhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M;hjVhžhubhÙ)”}”(hŒ>https://github.com/NetSys/bess/wiki/Built-In-Modules-and-Ports”h]”hÞ)”}”(hjÕh]”hŒ>https://github.com/NetSys/bess/wiki/Built-In-Modules-and-Ports”…””}”(hj×hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”jÕuh1hÝhjÓubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M>hjVhžhubhÙ)”}”(hŒ7BESS transport does not require any special privileges.”h]”hŒ7BESS transport does not require any special privileges.”…””}”(hjëhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M@hjVhžhubeh}”(h]”j<ah ]”h"]”Œbess socket transport”ah$]”h&]”uh1h´hjfhžhhŸh³h M+ubhµ)”}”(hhh]”(hº)”}”(hŒVDE vector transport”h]”hŒVDE vector transport”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jXuh1h¹hjhžhhŸh³h MCubhÙ)”}”(hŒVirtual Distributed Ethernet (VDE) is a project whose main goal is to provide a highly flexible support for virtual networking.”h]”hŒVirtual Distributed Ethernet (VDE) is a project whose main goal is to provide a highly flexible support for virtual networking.”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MEhjhžhubhÙ)”}”(hŒ3http://wiki.virtualsquare.org/#/tutorials/vdebasics”h]”hÞ)”}”(hj!h]”hŒ3http://wiki.virtualsquare.org/#/tutorials/vdebasics”…””}”(hj#hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”j!uh1hÝhjubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MHhjhžhubhÙ)”}”(hŒ;Common usages of VDE include fast prototyping and teaching.”h]”hŒ;Common usages of VDE include fast prototyping and teaching.”…””}”(hj7hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MJhjhžhubhÙ)”}”(hŒ Examples:”h]”hŒ Examples:”…””}”(hjEhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MLhjhžhubhŒblock_quote”“”)”}”(hŒ&``vecX:transport=vde,vnl=tap://tap0`` ”h]”hÙ)”}”(hŒ%``vecX:transport=vde,vnl=tap://tap0``”h]”j¡ )”}”(hj[h]”hŒ!vecX:transport=vde,vnl=tap://tap0”…””}”(hj]hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjYubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MNhjUubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h MNhjhžhubhÙ)”}”(hŒuse tap0”h]”hŒuse tap0”…””}”(hjvhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MPhjhžhubjT)”}”(hŒ$``vecX:transport=vde,vnl=slirp://`` ”h]”hÙ)”}”(hŒ#``vecX:transport=vde,vnl=slirp://``”h]”j¡ )”}”(hjŠh]”hŒvecX:transport=vde,vnl=slirp://”…””}”(hjŒhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjˆubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MRhj„ubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h MRhjhžhubhÙ)”}”(hŒ use slirp”h]”hŒ use slirp”…””}”(hj¥hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MThjhžhubjT)”}”(hŒ-``vec0:transport=vde,vnl=vde:///tmp/switch`` ”h]”hÙ)”}”(hŒ,``vec0:transport=vde,vnl=vde:///tmp/switch``”h]”j¡ )”}”(hj¹h]”hŒ(vec0:transport=vde,vnl=vde:///tmp/switch”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj·ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MVhj³ubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h MVhjhžhubhÙ)”}”(hŒconnect to a vde switch”h]”hŒconnect to a vde switch”…””}”(hjÔhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MXhjhžhubjT)”}”(hŒC``vecX:transport=\"vde,vnl=cmd://ssh remote.host //tmp/sshlirp\"`` ”h]”hÙ)”}”(hŒB``vecX:transport=\"vde,vnl=cmd://ssh remote.host //tmp/sshlirp\"``”h]”j¡ )”}”(hŒB``vecX:transport=\"vde,vnl=cmd://ssh remote.host //tmp/sshlirp\"``”h]”hŒ>vecX:transport=\"vde,vnl=cmd://ssh remote.host //tmp/sshlirp\"”…””}”(hjêhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjæubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MZhjâubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h MZhjhžhubhÙ)”}”(hŒuconnect to a remote slirp (instant VPN: convert ssh to VPN, it uses sshlirp) https://github.com/virtualsquare/sshlirp”h]”(hŒMconnect to a remote slirp (instant VPN: convert ssh to VPN, it uses sshlirp) ”…””}”(hjhžhhŸNh NubhÞ)”}”(hŒ(https://github.com/virtualsquare/sshlirp”h]”hŒ(https://github.com/virtualsquare/sshlirp”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”juh1hÝhjubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M\hjhžhubjT)”}”(hŒ-``vec0:transport=vde,vnl=vxvde://234.0.0.1`` ”h]”hÙ)”}”(hŒ,``vec0:transport=vde,vnl=vxvde://234.0.0.1``”h]”j¡ )”}”(hj'h]”hŒ(vec0:transport=vde,vnl=vxvde://234.0.0.1”…””}”(hj)hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj%ubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M_hj!ubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h M_hjhžhubhÙ)”}”(hŒÀconnect to a local area cloud (all the UML nodes using the same multicast address running on hosts in the same multicast domain (LAN) will be automagically connected together to a virtual LAN.”h]”hŒÀconnect to a local area cloud (all the UML nodes using the same multicast address running on hosts in the same multicast domain (LAN) will be automagically connected together to a virtual LAN.”…””}”(hjBhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mahjhžhubeh}”(h]”j^ah ]”h"]”Œvde vector transport”ah$]”h&]”uh1h´hjfhžhhŸh³h MCubeh}”(h]”j/ah ]”h"]”Œconfiguring vector transports”ah$]”h&]”uh1h´hj'hžhhŸh³h Mubhµ)”}”(hhh]”(hº)”}”(hŒConfiguring Legacy transports”h]”hŒConfiguring Legacy transports”…””}”(hjahžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j†uh1h¹hj^hžhhŸh³h MfubhÙ)”}”(hŒNLegacy transports are now considered obsolete. Please use the vector versions.”h]”hŒNLegacy transports are now considered obsolete. Please use the vector versions.”…””}”(hjohžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhhj^hžhubeh}”(h]”jŒah ]”h"]”Œconfiguring legacy transports”ah$]”h&]”uh1h´hj'hžhhŸh³h Mfubeh}”(h]”jîah ]”h"]”Œsetting up uml networking”ah$]”h&]”uh1h´hh¶hžhhŸh³h KÁubhµ)”}”(hhh]”(hº)”}”(hŒRunning UML”h]”hŒRunning UML”…””}”(hjŽhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j´uh1h¹hj‹hžhhŸh³h MmubhÙ)”}”(hŒ‹This section assumes that either the user-mode-linux package from the distribution or a custom built kernel has been installed on the host.”h]”hŒ‹This section assumes that either the user-mode-linux package from the distribution or a custom built kernel has been installed on the host.”…””}”(hjœhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mohj‹hžhubhÙ)”}”(hXThese add an executable called linux to the system. This is the UML kernel. It can be run just like any other executable. It will take most normal linux kernel arguments as command line arguments. Additionally, it will need some UML-specific arguments in order to do something useful.”h]”hXThese add an executable called linux to the system. This is the UML kernel. It can be run just like any other executable. It will take most normal linux kernel arguments as command line arguments. Additionally, it will need some UML-specific arguments in order to do something useful.”…””}”(hjªhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mrhj‹hžhubhµ)”}”(hhh]”(hº)”}”(hŒ Arguments”h]”hŒ Arguments”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jÓuh1h¹hj¸hžhhŸh³h Myubhµ)”}”(hhh]”(hº)”}”(hŒMandatory Arguments:”h]”hŒMandatory Arguments:”…””}”(hjÌhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jòuh1h¹hjÉhžhhŸh³h M|ubhÏ)”}”(hhh]”(hÔ)”}”(hŒf``mem=int[K,M,G]`` - amount of memory. By default in bytes. It will also accept K, M or G qualifiers. ”h]”hÙ)”}”(hŒe``mem=int[K,M,G]`` - amount of memory. By default in bytes. It will also accept K, M or G qualifiers.”h]”(j¡ )”}”(hŒ``mem=int[K,M,G]``”h]”hŒmem=int[K,M,G]”…””}”(hjåhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjáubhŒS - amount of memory. By default in bytes. It will also accept K, M or G qualifiers.”…””}”(hjáhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M~hjÝubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÚhžhhŸh³h NubhÔ)”}”(hX_``ubdX[s,d,c,t]=`` virtual disk specification. This is not really mandatory, but it is likely to be needed in nearly all cases so we can specify a root file system. The simplest possible image specification is the name of the image file for the filesystem (created using one of the methods described in `Creating an image`_). * UBD devices support copy on write (COW). The changes are kept in a separate file which can be discarded allowing a rollback to the original pristine image. If COW is desired, the UBD image is specified as: ``cow_file,master_image``. Example:``ubd0=Filesystem.cow,Filesystem.img`` * UBD devices can be set to use synchronous IO. Any writes are immediately flushed to disk. This is done by adding ``s`` after the ``ubdX`` specification. * UBD performs some heuristics on devices specified as a single filename to make sure that a COW file has not been specified as the image. To turn them off, use the ``d`` flag after ``ubdX``. * UBD supports TRIM - asking the Host OS to reclaim any unused blocks in the image. To turn it off, specify the ``t`` flag after ``ubdX``. ”h]”(hÙ)”}”(hXE``ubdX[s,d,c,t]=`` virtual disk specification. This is not really mandatory, but it is likely to be needed in nearly all cases so we can specify a root file system. The simplest possible image specification is the name of the image file for the filesystem (created using one of the methods described in `Creating an image`_).”h]”(j¡ )”}”(hŒ``ubdX[s,d,c,t]=``”h]”hŒubdX[s,d,c,t]=”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjubhX virtual disk specification. This is not really mandatory, but it is likely to be needed in nearly all cases so we can specify a root file system. The simplest possible image specification is the name of the image file for the filesystem (created using one of the methods described in ”…””}”(hjhžhhŸNh NubhÞ)”}”(hŒ`Creating an image`_”h]”hŒCreating an image”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”Œname”ŒCreating an image”j´jžuh1hÝhjŒresolved”KubhŒ).”…””}”(hjhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MhjubhÏ)”}”(hhh]”(hÔ)”}”(hXUBD devices support copy on write (COW). The changes are kept in a separate file which can be discarded allowing a rollback to the original pristine image. If COW is desired, the UBD image is specified as: ``cow_file,master_image``. Example:``ubd0=Filesystem.cow,Filesystem.img`` ”h]”hÙ)”}”(hXUBD devices support copy on write (COW). The changes are kept in a separate file which can be discarded allowing a rollback to the original pristine image. If COW is desired, the UBD image is specified as: ``cow_file,master_image``. Example:``ubd0=Filesystem.cow,Filesystem.img``”h]”(hŒÏUBD devices support copy on write (COW). The changes are kept in a separate file which can be discarded allowing a rollback to the original pristine image. If COW is desired, the UBD image is specified as: ”…””}”(hj?hžhhŸNh Nubj¡ )”}”(hŒ``cow_file,master_image``”h]”hŒcow_file,master_image”…””}”(hjGhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj?ubhŒ . Example:”…””}”(hj?hžhhŸNh Nubj¡ )”}”(hŒ&``ubd0=Filesystem.cow,Filesystem.img``”h]”hŒ"ubd0=Filesystem.cow,Filesystem.img”…””}”(hjYhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj?ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mˆhj;ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj8ubhÔ)”}”(hŒ™UBD devices can be set to use synchronous IO. Any writes are immediately flushed to disk. This is done by adding ``s`` after the ``ubdX`` specification. ”h]”hÙ)”}”(hŒ˜UBD devices can be set to use synchronous IO. Any writes are immediately flushed to disk. This is done by adding ``s`` after the ``ubdX`` specification.”h]”(hŒqUBD devices can be set to use synchronous IO. Any writes are immediately flushed to disk. This is done by adding ”…””}”(hjwhžhhŸNh Nubj¡ )”}”(hŒ``s``”h]”hŒs”…””}”(hjhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjwubhŒ after the ”…””}”(hjwhžhhŸNh Nubj¡ )”}”(hŒ``ubdX``”h]”hŒubdX”…””}”(hj‘hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjwubhŒ specification.”…””}”(hjwhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MŽhjsubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj8ubhÔ)”}”(hŒ¾UBD performs some heuristics on devices specified as a single filename to make sure that a COW file has not been specified as the image. To turn them off, use the ``d`` flag after ``ubdX``. ”h]”hÙ)”}”(hŒ½UBD performs some heuristics on devices specified as a single filename to make sure that a COW file has not been specified as the image. To turn them off, use the ``d`` flag after ``ubdX``.”h]”(hŒ£UBD performs some heuristics on devices specified as a single filename to make sure that a COW file has not been specified as the image. To turn them off, use the ”…””}”(hj³hžhhŸNh Nubj¡ )”}”(hŒ``d``”h]”hŒd”…””}”(hj»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj³ubhŒ flag after ”…””}”(hj³hžhhŸNh Nubj¡ )”}”(hŒ``ubdX``”h]”hŒubdX”…””}”(hjÍhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj³ubhŒ.”…””}”(hj³hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M’hj¯ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj8ubhÔ)”}”(hŒ‰UBD supports TRIM - asking the Host OS to reclaim any unused blocks in the image. To turn it off, specify the ``t`` flag after ``ubdX``. ”h]”hÙ)”}”(hŒˆUBD supports TRIM - asking the Host OS to reclaim any unused blocks in the image. To turn it off, specify the ``t`` flag after ``ubdX``.”h]”(hŒnUBD supports TRIM - asking the Host OS to reclaim any unused blocks in the image. To turn it off, specify the ”…””}”(hjïhžhhŸNh Nubj¡ )”}”(hŒ``t``”h]”hŒt”…””}”(hj÷hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjïubhŒ flag after ”…””}”(hjïhžhhŸNh Nubj¡ )”}”(hŒ``ubdX``”h]”hŒubdX”…””}”(hj hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hjïubhŒ.”…””}”(hjïhžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M–hjëubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj8ubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h Mˆhjubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÚhžhhŸNh NubhÔ)”}”(hŒU``root=`` root device - most likely ``/dev/ubd0`` (this is a Linux filesystem image) ”h]”hÙ)”}”(hŒT``root=`` root device - most likely ``/dev/ubd0`` (this is a Linux filesystem image)”h]”(j¡ )”}”(hŒ ``root=``”h]”hŒroot=”…””}”(hj; hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj7 ubhŒ root device - most likely ”…””}”(hj7 hžhhŸNh Nubj¡ )”}”(hŒ ``/dev/ubd0``”h]”hŒ /dev/ubd0”…””}”(hjM hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj7 ubhŒ# (this is a Linux filesystem image)”…””}”(hj7 hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mšhj3 ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhjÚhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M~hjÉhžhubeh}”(h]”jøah ]”h"]”Œmandatory arguments:”ah$]”h&]”uh1h´hj¸hžhhŸh³h M|ubhµ)”}”(hhh]”(hº)”}”(hŒImportant Optional Arguments”h]”hŒImportant Optional Arguments”…””}”(hj{ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´juh1h¹hjx hžhhŸh³h MžubhÙ)”}”(hXzIf UML is run as "linux" with no extra arguments, it will try to start an xterm for every console configured inside the image (up to 6 in most Linux distributions). Each console is started inside an xterm. This makes it nice and easy to use UML on a host with a GUI. It is, however, the wrong approach if UML is to be used as a testing harness or run in a text-only environment.”h]”hX~If UML is run as â€œlinuxâ€ with no extra arguments, it will try to start an xterm for every console configured inside the image (up to 6 in most Linux distributions). Each console is started inside an xterm. This makes it nice and easy to use UML on a host with a GUI. It is, however, the wrong approach if UML is to be used as a testing harness or run in a text-only environment.”…””}”(hj‰ hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M hjx hžhubhÙ)”}”(hŒÕIn order to change this behaviour we need to specify an alternative console and wire it to one of the supported "line" channels. For this we need to map a console to use something different from the default xterm.”h]”hŒÙIn order to change this behaviour we need to specify an alternative console and wire it to one of the supported â€œlineâ€ channels. For this we need to map a console to use something different from the default xterm.”…””}”(hj— hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M§hjx hžhubhÙ)”}”(hŒhj+hžhubj‰ )”}”(hŒtmount -t tmpfs -ompol=bind:X none /mnt/tmpfs-nodeX TEMP=/mnt/tmpfs-nodeX taskset -cX linux options options options..”h]”hŒtmount -t tmpfs -ompol=bind:X none /mnt/tmpfs-nodeX TEMP=/mnt/tmpfs-nodeX taskset -cX linux options options options..”…””}”hj¬+sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MHhj+hžhubeh}”(h]”jœah ]”h"]”Œ tuning uml”ah$]”h&]”uh1h´hjM'hžhhŸh³h M1ubeh}”(h]”j9ah ]”h"]”Œadvanced uml topics”ah$]”h&]”uh1h´hh¶hžhhŸh³h M…ubhµ)”}”(hhh]”(hº)”}”(hŒ+Contributing to UML and Developing with UML”h]”hŒ+Contributing to UML and Developing with UML”…””}”(hjË+hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jÄuh1h¹hjÈ+hžhhŸh³h MMubhÙ)”}”(hŒåUML is an excellent platform to develop new Linux kernel concepts - filesystems, devices, virtualization, etc. It provides unrivalled opportunities to create and test them without being constrained to emulating specific hardware.”h]”hŒåUML is an excellent platform to develop new Linux kernel concepts - filesystems, devices, virtualization, etc. It provides unrivalled opportunities to create and test them without being constrained to emulating specific hardware.”…””}”(hjÙ+hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MOhjÈ+hžhubhÙ)”}”(hŒMExample - want to try how Linux will work with 4096 "proper" network devices?”h]”hŒQExample - want to try how Linux will work with 4096 â€œproperâ€ network devices?”…””}”(hjç+hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MThjÈ+hžhubhÙ)”}”(hŒþNot an issue with UML. At the same time, this is something which is difficult with other virtualization packages - they are constrained by the number of devices allowed on the hardware bus they are trying to emulate (for example 16 on a PCI bus in qemu).”h]”hŒþNot an issue with UML. At the same time, this is something which is difficult with other virtualization packages - they are constrained by the number of devices allowed on the hardware bus they are trying to emulate (for example 16 on a PCI bus in qemu).”…””}”(hjõ+hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MWhjÈ+hžhubhÙ)”}”(hŒIf you have something to contribute such as a patch, a bugfix, a new feature, please send it to ``linux-um@lists.infradead.org``.”h]”(hŒ`If you have something to contribute such as a patch, a bugfix, a new feature, please send it to ”…””}”(hj,hžhhŸNh Nubj¡ )”}”(hŒ ``linux-um@lists.infradead.org``”h]”hŒlinux-um@lists.infradead.org”…””}”(hj,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj,ubhŒ.”…””}”(hj,hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M\hjÈ+hžhubhÙ)”}”(hŒÎPlease follow all standard Linux patch guidelines such as cc-ing relevant maintainers and run ``./scripts/checkpatch.pl`` on your patch. For more details see ``Documentation/process/submitting-patches.rst``”h]”(hŒ^Please follow all standard Linux patch guidelines such as cc-ing relevant maintainers and run ”…””}”(hj#,hžhhŸNh Nubj¡ )”}”(hŒ``./scripts/checkpatch.pl``”h]”hŒ./scripts/checkpatch.pl”…””}”(hj+,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj#,ubhŒ% on your patch. For more details see ”…””}”(hj#,hžhhŸNh Nubj¡ )”}”(hŒ0``Documentation/process/submitting-patches.rst``”h]”hŒ,Documentation/process/submitting-patches.rst”…””}”(hj=,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj#,ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M_hjÈ+hžhubhÙ)”}”(hŒ`Note - the list does not accept HTML or attachments, all emails must be formatted as plain text.”h]”hŒ`Note - the list does not accept HTML or attachments, all emails must be formatted as plain text.”…””}”(hjQ,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MchjÈ+hžhubhÙ)”}”(hXsDeveloping always goes hand in hand with debugging. First of all, you can always run UML under gdb and there will be a whole section later on on how to do that. That, however, is not the only way to debug a Linux kernel. Quite often adding tracing statements and/or using UML specific approaches such as ptracing the UML kernel process are significantly more informative.”h]”hXsDeveloping always goes hand in hand with debugging. First of all, you can always run UML under gdb and there will be a whole section later on on how to do that. That, however, is not the only way to debug a Linux kernel. Quite often adding tracing statements and/or using UML specific approaches such as ptracing the UML kernel process are significantly more informative.”…””}”(hj_,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MfhjÈ+hžhubhµ)”}”(hhh]”(hº)”}”(hŒTracing UML”h]”hŒTracing UML”…””}”(hjp,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jãuh1h¹hjm,hžhhŸh³h MnubhÙ)”}”(hŒÄWhen running, UML consists of a main kernel thread and a number of helper threads. The ones of interest for tracing are NOT the ones that are already ptraced by UML as a part of its MMU emulation.”h]”hŒÄWhen running, UML consists of a main kernel thread and a number of helper threads. The ones of interest for tracing are NOT the ones that are already ptraced by UML as a part of its MMU emulation.”…””}”(hj~,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mphjm,hžhubhÙ)”}”(hX6These are usually the first three threads visible in a ps display. The one with the lowest PID number and using most CPU is usually the kernel thread. The other threads are the disk (ubd) device helper thread and the SIGIO helper thread. Running ptrace on this thread usually results in the following picture::”h]”hX5These are usually the first three threads visible in a ps display. The one with the lowest PID number and using most CPU is usually the kernel thread. The other threads are the disk (ubd) device helper thread and the SIGIO helper thread. Running ptrace on this thread usually results in the following picture:”…””}”(hjŒ,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mthjm,hžhubj‰ )”}”(hXEhost$ strace -p 16566 --- SIGIO {si_signo=SIGIO, si_code=POLL_IN, si_band=65} --- epoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1 epoll_wait(4, [], 64, 0) = 0 rt_sigreturn({mask=[PIPE]}) = 16967 ptrace(PTRACE_GETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_GETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=832}]) = 0 ptrace(PTRACE_GETSIGINFO, 16967, NULL, {si_signo=SIGTRAP, si_code=0x85, si_pid=16967, si_uid=0}) = 0 ptrace(PTRACE_SETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_SETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=2696}]) = 0 ptrace(PTRACE_SYSEMU, 16967, NULL, 0) = 0 --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_TRAPPED, si_pid=16967, si_uid=0, si_status=SIGTRAP, si_utime=65, si_stime=89} --- wait4(16967, [{WIFSTOPPED(s) && WSTOPSIG(s) == SIGTRAP | 0x80}], WSTOPPED|__WALL, NULL) = 16967 ptrace(PTRACE_GETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_GETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=832}]) = 0 ptrace(PTRACE_GETSIGINFO, 16967, NULL, {si_signo=SIGTRAP, si_code=0x85, si_pid=16967, si_uid=0}) = 0 timer_settime(0, 0, {it_interval={tv_sec=0, tv_nsec=0}, it_value={tv_sec=0, tv_nsec=2830912}}, NULL) = 0 getpid() = 16566 clock_nanosleep(CLOCK_MONOTONIC, 0, {tv_sec=1, tv_nsec=0}, NULL) = ? ERESTART_RESTARTBLOCK (Interrupted by signal) --- SIGALRM {si_signo=SIGALRM, si_code=SI_TIMER, si_timerid=0, si_overrun=0, si_value={int=1631716592, ptr=0x614204f0}} --- rt_sigreturn({mask=[PIPE]}) = -1 EINTR (Interrupted system call)”h]”hXEhost$ strace -p 16566 --- SIGIO {si_signo=SIGIO, si_code=POLL_IN, si_band=65} --- epoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1 epoll_wait(4, [], 64, 0) = 0 rt_sigreturn({mask=[PIPE]}) = 16967 ptrace(PTRACE_GETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_GETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=832}]) = 0 ptrace(PTRACE_GETSIGINFO, 16967, NULL, {si_signo=SIGTRAP, si_code=0x85, si_pid=16967, si_uid=0}) = 0 ptrace(PTRACE_SETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_SETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=2696}]) = 0 ptrace(PTRACE_SYSEMU, 16967, NULL, 0) = 0 --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_TRAPPED, si_pid=16967, si_uid=0, si_status=SIGTRAP, si_utime=65, si_stime=89} --- wait4(16967, [{WIFSTOPPED(s) && WSTOPSIG(s) == SIGTRAP | 0x80}], WSTOPPED|__WALL, NULL) = 16967 ptrace(PTRACE_GETREGS, 16967, NULL, 0xd5f34f38) = 0 ptrace(PTRACE_GETREGSET, 16967, NT_X86_XSTATE, [{iov_base=0xd5f35010, iov_len=832}]) = 0 ptrace(PTRACE_GETSIGINFO, 16967, NULL, {si_signo=SIGTRAP, si_code=0x85, si_pid=16967, si_uid=0}) = 0 timer_settime(0, 0, {it_interval={tv_sec=0, tv_nsec=0}, it_value={tv_sec=0, tv_nsec=2830912}}, NULL) = 0 getpid() = 16566 clock_nanosleep(CLOCK_MONOTONIC, 0, {tv_sec=1, tv_nsec=0}, NULL) = ? ERESTART_RESTARTBLOCK (Interrupted by signal) --- SIGALRM {si_signo=SIGALRM, si_code=SI_TIMER, si_timerid=0, si_overrun=0, si_value={int=1631716592, ptr=0x614204f0}} --- rt_sigreturn({mask=[PIPE]}) = -1 EINTR (Interrupted system call)”…””}”hjš,sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h Mzhjm,hžhubhÙ)”}”(hŒ:This is a typical picture from a mostly idle UML instance.”h]”hŒ:This is a typical picture from a mostly idle UML instance.”…””}”(hj¨,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjm,hžhubhÏ)”}”(hhh]”(hÔ)”}”(hŒ—UML interrupt controller uses epoll - this is UML waiting for IO interrupts: epoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1 ”h]”(hÙ)”}”(hŒLUML interrupt controller uses epoll - this is UML waiting for IO interrupts:”h]”hŒLUML interrupt controller uses epoll - this is UML waiting for IO interrupts:”…””}”(hj½,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M’hj¹,ubjT)”}”(hŒHepoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1 ”h]”hÙ)”}”(hŒGepoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1”h]”hŒGepoll_wait(4, [{EPOLLIN, {u32=3721159424, u64=3721159424}}], 64, 0) = 1”…””}”(hjÏ,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M•hjË,ubah}”(h]”h ]”h"]”h$]”h&]”uh1jShŸh³h M•hj¹,ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¶,hžhhŸh³h NubhÔ)”}”(hŒTThe sequence of ptrace calls is part of MMU emulation and running the UML userspace.”h]”hÙ)”}”(hŒTThe sequence of ptrace calls is part of MMU emulation and running the UML userspace.”h]”hŒTThe sequence of ptrace calls is part of MMU emulation and running the UML userspace.”…””}”(hjí,hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M—hjé,ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¶,hžhhŸh³h NubhÔ)”}”(hŒŠ``timer_settime`` is part of the UML high res timer subsystem mapping timer requests from inside UML onto the host high resolution timers.”h]”hÙ)”}”(hŒŠ``timer_settime`` is part of the UML high res timer subsystem mapping timer requests from inside UML onto the host high resolution timers.”h]”(j¡ )”}”(hŒ``timer_settime``”h]”hŒ timer_settime”…””}”(hj -hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj-ubhŒy is part of the UML high res timer subsystem mapping timer requests from inside UML onto the host high resolution timers.”…””}”(hj-hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M™hj-ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¶,hžhhŸh³h NubhÔ)”}”(hŒ```clock_nanosleep`` is UML going into idle (similar to the way a PC will execute an ACPI idle). ”h]”hÙ)”}”(hŒ_``clock_nanosleep`` is UML going into idle (similar to the way a PC will execute an ACPI idle).”h]”(j¡ )”}”(hŒ``clock_nanosleep``”h]”hŒclock_nanosleep”…””}”(hj/-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj+-ubhŒL is UML going into idle (similar to the way a PC will execute an ACPI idle).”…””}”(hj+-hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M›hj'-ubah}”(h]”h ]”h"]”h$]”h&]”uh1hÓhj¶,hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jÇ jÈ uh1hÎhŸh³h M’hjm,hžhubhÙ)”}”(hŒ¼As you can see UML will generate quite a bit of output even in idle. The output can be very informative when observing IO. It shows the actual IO calls, their arguments and returns values.”h]”hŒ¼As you can see UML will generate quite a bit of output even in idle. The output can be very informative when observing IO. It shows the actual IO calls, their arguments and returns values.”…””}”(hjS-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mžhjm,hžhubeh}”(h]”jéah ]”h"]”Œtracing uml”ah$]”h&]”uh1h´hjÈ+hžhhŸh³h Mnubhµ)”}”(hhh]”(hº)”}”(hŒKernel debugging”h]”hŒKernel debugging”…””}”(hjk-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´juh1h¹hjh-hžhhŸh³h M£ubhÙ)”}”(hŒÐYou can run UML under gdb now, though it will not necessarily agree to be started under it. If you are trying to track a runtime bug, it is much better to attach gdb to a running UML instance and let UML run.”h]”hŒÐYou can run UML under gdb now, though it will not necessarily agree to be started under it. If you are trying to track a runtime bug, it is much better to attach gdb to a running UML instance and let UML run.”…””}”(hjy-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M¥hjh-hžhubhÙ)”}”(hŒHAssuming the same PID number as in the previous example, this would be::”h]”hŒGAssuming the same PID number as in the previous example, this would be:”…””}”(hj‡-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M©hjh-hžhubj‰ )”}”(hŒ# gdb -p 16566”h]”hŒ# gdb -p 16566”…””}”hj•-sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h M«hjh-hžhubhÙ)”}”(hŒÄThis will STOP the UML instance, so you must enter `cont` at the GDB command line to request it to continue. It may be a good idea to make this into a gdb script and pass it to gdb as an argument.”h]”(hŒ3This will STOP the UML instance, so you must enter ”…””}”(hj£-hžhhŸNh Nubj…)”}”(hŒ`cont`”h]”hŒcont”…””}”(hj«-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j„hj£-ubhŒ‹ at the GDB command line to request it to continue. It may be a good idea to make this into a gdb script and pass it to gdb as an argument.”…””}”(hj£-hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mhjh-hžhubeh}”(h]”jah ]”h"]”Œkernel debugging”ah$]”h&]”uh1h´hjÈ+hžhhŸh³h M£ubhµ)”}”(hhh]”(hº)”}”(hŒDeveloping Device Drivers”h]”hŒDeveloping Device Drivers”…””}”(hjÍ-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´j'uh1h¹hjÊ-hžhhŸh³h M²ubhÙ)”}”(hX\Nearly all UML drivers are monolithic. While it is possible to build a UML driver as a kernel module, that limits the possible functionality to in-kernel only and non-UML specific. The reason for this is that in order to really leverage UML, one needs to write a piece of userspace code which maps driver concepts onto actual userspace host calls.”h]”hX\Nearly all UML drivers are monolithic. While it is possible to build a UML driver as a kernel module, that limits the possible functionality to in-kernel only and non-UML specific. The reason for this is that in order to really leverage UML, one needs to write a piece of userspace code which maps driver concepts onto actual userspace host calls.”…””}”(hjÛ-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M´hjÊ-hžhubhÙ)”}”(hXThis forms the so-called "user" portion of the driver. While it can reuse a lot of kernel concepts, it is generally just another piece of userspace code. This portion needs some matching "kernel" code which resides inside the UML image and which implements the Linux kernel part.”h]”hXThis forms the so-called â€œuserâ€ portion of the driver. While it can reuse a lot of kernel concepts, it is generally just another piece of userspace code. This portion needs some matching â€œkernelâ€ code which resides inside the UML image and which implements the Linux kernel part.”…””}”(hjé-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M»hjÊ-hžhubhÙ)”}”(hŒO*Note: There are very few limitations in the way "kernel" and "user" interact*.”h]”(j_()”}”(hŒN*Note: There are very few limitations in the way "kernel" and "user" interact*”h]”hŒTNote: There are very few limitations in the way â€œkernelâ€ and â€œuserâ€ interact”…””}”(hjû-hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j^(hj÷-ubhŒ.”…””}”(hj÷-hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÀhjÊ-hžhubhÙ)”}”(hXÀUML does not have a strictly defined kernel-to-host API. It does not try to emulate a specific architecture or bus. UML's "kernel" and "user" can share memory, code and interact as needed to implement whatever design the software developer has in mind. The only limitations are purely technical. Due to a lot of functions and variables having the same names, the developer should be careful which includes and libraries they are trying to refer to.”h]”hXÊUML does not have a strictly defined kernel-to-host API. It does not try to emulate a specific architecture or bus. UMLâ€™s â€œkernelâ€ and â€œuserâ€ can share memory, code and interact as needed to implement whatever design the software developer has in mind. The only limitations are purely technical. Due to a lot of functions and variables having the same names, the developer should be careful which includes and libraries they are trying to refer to.”…””}”(hj.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÂhjÊ-hžhubhÙ)”}”(hŒòAs a result a lot of userspace code consists of simple wrappers. E.g. ``os_close_file()`` is just a wrapper around ``close()`` which ensures that the userspace function close does not clash with similarly named function(s) in the kernel part.”h]”(hŒFAs a result a lot of userspace code consists of simple wrappers. E.g. ”…””}”(hj!.hžhhŸNh Nubj¡ )”}”(hŒ``os_close_file()``”h]”hŒos_close_file()”…””}”(hj).hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj!.ubhŒ is just a wrapper around ”…””}”(hj!.hžhhŸNh Nubj¡ )”}”(hŒ``close()``”h]”hŒclose()”…””}”(hj;.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j hj!.ubhŒt which ensures that the userspace function close does not clash with similarly named function(s) in the kernel part.”…””}”(hj!.hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÊhjÊ-hžhubeh}”(h]”j-ah ]”h"]”Œdeveloping device drivers”ah$]”h&]”uh1h´hjÈ+hžhhŸh³h M²ubhµ)”}”(hhh]”(hº)”}”(hŒUsing UML as a Test Platform”h]”hŒUsing UML as a Test Platform”…””}”(hj].hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jIuh1h¹hjZ.hžhhŸh³h MÐubhÙ)”}”(hŒòUML is an excellent test platform for device driver development. As with most things UML, "some user assembly may be required". It is up to the user to build their emulation environment. UML at present provides only the kernel infrastructure.”h]”hŒöUML is an excellent test platform for device driver development. As with most things UML, â€œsome user assembly may be requiredâ€. It is up to the user to build their emulation environment. UML at present provides only the kernel infrastructure.”…””}”(hjk.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÒhjZ.hžhubhÙ)”}”(hŒËPart of this infrastructure is the ability to load and parse fdt device tree blobs as used in Arm or Open Firmware platforms. These are supplied as an optional extra argument to the kernel command line::”h]”hŒÊPart of this infrastructure is the ability to load and parse fdt device tree blobs as used in Arm or Open Firmware platforms. These are supplied as an optional extra argument to the kernel command line:”…””}”(hjy.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h M×hjZ.hžhubj‰ )”}”(hŒdtb=filename”h]”hŒdtb=filename”…””}”hj‡.sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1jˆ hŸh³h MÜhjZ.hžhubhÙ)”}”(hŒßThe device tree is loaded and parsed at boottime and is accessible by drivers which query it. At this moment in time this facility is intended solely for development purposes. UML's own devices do not query the device tree.”h]”hŒáThe device tree is loaded and parsed at boottime and is accessible by drivers which query it. At this moment in time this facility is intended solely for development purposes. UMLâ€™s own devices do not query the device tree.”…””}”(hj•.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h MÞhjZ.hžhubhµ)”}”(hhh]”(hº)”}”(hŒSecurity Considerations”h]”hŒSecurity Considerations”…””}”(hj¦.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”j´jhuh1h¹hj£.hžhhŸh³h MäubhÙ)”}”(hXdDrivers or any new functionality should default to not accepting arbitrary filename, bpf code or other parameters which can affect the host from inside the UML instance. For example, specifying the socket used for IPC communication between a driver and the host at the UML command line is OK security-wise. Allowing it as a loadable module parameter isn't.”h]”hXfDrivers or any new functionality should default to not accepting arbitrary filename, bpf code or other parameters which can affect the host from inside the UML instance. For example, specifying the socket used for IPC communication between a driver and the host at the UML command line is OK security-wise. Allowing it as a loadable module parameter isnâ€™t.”…””}”(hj´.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mæhj£.hžhubhÙ)”}”(hŒçIf such functionality is desirable for a particular application (e.g. loading BPF "firmware" for raw socket network transports), it should be off by default and should be explicitly turned on as a command line parameter at startup.”h]”hŒëIf such functionality is desirable for a particular application (e.g. loading BPF â€œfirmwareâ€ for raw socket network transports), it should be off by default and should be explicitly turned on as a command line parameter at startup.”…””}”(hjÂ.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Mîhj£.hžhubhÙ)”}”(hXeEven with this in mind, the level of isolation between UML and the host is relatively weak. If the UML userspace is allowed to load arbitrary kernel drivers, an attacker can use this to break out of UML. Thus, if UML is used in a production application, it is recommended that all modules are loaded at boot and kernel module loading is disabled afterwards.”h]”hXeEven with this in mind, the level of isolation between UML and the host is relatively weak. If the UML userspace is allowed to load arbitrary kernel drivers, an attacker can use this to break out of UML. Thus, if UML is used in a production application, it is recommended that all modules are loaded at boot and kernel module loading is disabled afterwards.”…””}”(hjÐ.hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhŸh³h Móhj£.hžhubeh}”(h]”jnah ]”h"]”Œsecurity considerations”ah$]”h&]”uh1h´hjZ.hžhhŸh³h Mäubeh}”(h]”jOah ]”h"]”Œusing uml as a test platform”ah$]”h&]”uh1h´hjÈ+hžhhŸh³h MÐubeh}”(h]”jÊah ]”h"]”Œ+contributing to uml and developing with uml”ah$]”h&]”uh1h´hh¶hžhhŸh³h MMubeh}”(h]”Œ uml-howto”ah ]”h"]”Œ uml howto”ah$]”h&]”uh1h´hhhžhhŸh³h Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”h³uh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(h¹NŒ generator”NŒ datestamp”NŒsource_link”NŒ source_url”NŒ toc_backlinks”j„Œfootnote_backlinks”KŒ sectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒ strip_classes”NŒreport_level”KŒ halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ traceback”ˆŒinput_encoding”Œ utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”j/Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œ language_code”Œen”Œrecord_dependencies”NŒconfig”NŒ id_prefix”hŒauto_id_prefix”Œid”Œ dump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”h³Œ_destination”NŒ _config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œ docinfo_xform”KŒsectsubtitle_xform”‰Œ image_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œcreating an image”]”jasŒrefids”}”Œnameids”}”(jø.jõ.j j›j9 hîj j jÍ j/j2 jQj$jj.jžjjÀjˆjîjcj j[j/j±jNjDjpj j’jkj´j¢jÖjêjøjSjjýj<jTj^jjŒjJ'jºjÝ!jÙju jøjÖ!jjU"jHj{"jjjC'jŒj„%j«jª%jÍjÞ%jïj&jjF&j3jl&jUj¤&jwjÊ&j™jð&j»j'jÝj<'jÿjÅ+j9j)jXj(jwjB(j™j|(j»j)jÝj+jj*j*jÕ*jLjû*jnj¾+jœjð.jÊje-jéjÇ-jjW.j-jé.jOjâ.jnuŒ nametypes”}”(jø.‰j ‰j9 ‰j ‰jÍ ‰j2 ‰j$‰j.‰j‰jˆ‰jc‰j[‰j±‰jD‰j ‰jk‰j¢‰jê‰jS‰jý‰jT‰j‰jJ'‰jÝ!‰ju ‰jÖ!‰jU"‰j{"‰jC'‰j„%‰jª%‰jÞ%‰j&‰jF&‰jl&‰j¤&‰jÊ&‰jð&‰j'‰j<'‰jÅ+‰j)‰j(‰jB(‰j|(‰j)‰j+‰j*‰jÕ*‰jû*‰j¾+‰jð.‰je-‰jÇ-‰jW.‰jé.‰jâ.‰uh}”(jõ.h¶j›hËhîj£j jÑj/j jQjÐ jj< jžji jÀj2jîj'j jÀj/jfjNj¡jpj´j’jGj´jjÖjnjøj¥jjíj<jVj^jjŒj^jºj‹jÙj¸jøjÉjjx jHjà!jjjX"jŒj~"j«jE%jÍj‡%jïj%jjá%j3j&jUjI&jwjo&j™j§&j»jÍ&jÝjó&jÿj'j9jM'jXj^'jwj}'j™j(j»jE(jÝj(jj)j*jd)jLj*jnjØ*jœj+jÊjÈ+jéjm,jjh-j-jÊ-jOjZ.jnj£.hèhßjhþj)j jKjBjyjpj˜jjºj±jèjßjjþj)j jHj?jjjajŒjƒj®j¥jÐjÇjòjéjjj6j-jXjOj†j}j´j«jÓjÊjòjéjjjBj9jdj[j†j}j¥jœjÇj¾jéjàjjj-j$jOjFjqjhj“jŠjµj¬j×jÎjùjðj3j*jRjIjqjhj“jŠjµj¬j×jÎjjüj$jjFj=jhj_j–jjÄj»jãjÚjjüj'jjIj@jhj_uŒ footnote_refs”}”Œ citation_refs”}”Œ autofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ footnotes”]”Œ citations”]”Œautofootnote_start”KŒsymbol_footnote_start”KŒ id_counter”Œcollections”ŒCounter”“”}”j+/K7s…”R”Œparse_messages”]”hŒsystem_message”“”)”}”(hhh]”hÙ)”}”(hŒfPossible title underline, too short for the title. Treating it as ordinary text because it's so short.”h]”hŒhPossible title underline, too short for the title. Treating it as ordinary text because itâ€™s so short.”…””}”(hj†/hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hØhjƒ/ubah}”(h]”h ]”h"]”h$]”h&]”Œlevel”KŒtype”ŒINFO”Œline”MÕŒsource”h³uh1j/hjà!hžhhŸh³h MÕubaŒtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ decoration”Nhžhub.