[Qemu-devel] A question about postcopy safety

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Qemu-devel] A question about postcopy safety

From:	liutgnu
Subject:	[Qemu-devel] A question about postcopy safety
Date:	Mon, 29 Aug 2016 12:51:20 +0000 (UTC)

Hi David,I'm studying the process of postcopy migration, and I found that the 
memory pages migrated from source to destination are not encrypted. Does this 
make the VM vulnerable if it's memory has been tampered with during postcopy 
migration?

I think precopy has less risk because the source's memory is always altering. 
If one page is tampered with during network transfer, with source still 
running, then a later version of that page may keep updating. So it would be 
quite difficult to track all different page versions, and tamper with the final 
version of one page.

But when it comes to postcopy, the situation is riskier because one specific 
page is only transferred once. It's easy to capture all transferring memory 
pages, tamper and resend.

When the memory been tampered with, the safety of the VM will be compromised.

Any ideas? thank you!Liutao

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] A question about postcopy safety, liutgnu <=
- Re: [Qemu-devel] A question about postcopy safety, Kashyap Chamarthy, 2016/08/29

Prev by Date: Re: [Qemu-devel] [PATCH for-2.8 v3 2/3] module: Don't load the same module if requested multiple times
Next by Date: Re: [Qemu-devel] [Qemu-stable] [PATCH v2 for 2.7] ui: fix refresh of VNC server surface
Previous by thread: [Qemu-devel] [PATCH for-2.8 00/38] s390x patches for 2.8
Next by thread: Re: [Qemu-devel] A question about postcopy safety
Index(es):
- Date
- Thread