[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] How to clone a running vm?
|
From: |
Eric Blake |
|
Subject: |
Re: [Qemu-devel] How to clone a running vm? |
|
Date: |
Mon, 12 Jan 2015 08:17:05 -0700 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.3.0 |
On 01/12/2015 12:49 AM, Zhang Haoyu wrote:
> Hi,
>
> I want to clone a running vm without shutoff,
A number of people have expressed a desire to do this. But PLEASE
consider the security implications. If you have two guests running from
the same initial running state, without sanitizing at least one of the
guests, then you have set yourself up for major security breaches if the
two guests can be accessed on the same network.
Things you need to sanitize include, but are not limited to, all guest
OS random number seeding, IP addresses, UUIDs, ssh keys, etc.
> can below method work?
> 1) create a snapshot for the vm
> 2) create a new qcow2 image from the snapshot, but how?
> 3) use the new qcow2 image as backing image to clone vms
While you can indeed create a qcow2 image from a running guest, I highly
suggest scrubbing and sanitizing that image before cloning new VMs that
use that state; and that your new guests be booted from scratch rather
than attempting to live-boot the cloned guests.
--
Eric Blake eblake redhat com +1-919-301-3266
Libvirt virtualization library http://libvirt.org
signature.asc
Description: OpenPGP digital signature