From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:56294)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bdpayne@gmail.com>) id 1XtYAX-00039j-0x
	for qemu-devel@nongnu.org; Wed, 26 Nov 2014 03:41:58 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <bdpayne@gmail.com>) id 1XtYAL-0006f0-0V
	for qemu-devel@nongnu.org; Wed, 26 Nov 2014 03:41:48 -0500
Received: from mail-pd0-x231.google.com ([2607:f8b0:400e:c02::231]:62947)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bdpayne@gmail.com>) id 1XtYAK-0006en-O0
	for qemu-devel@nongnu.org; Wed, 26 Nov 2014 03:41:36 -0500
Received: by mail-pd0-f177.google.com with SMTP id ft15so2372769pdb.22
	for <qemu-devel@nongnu.org>; Wed, 26 Nov 2014 00:41:35 -0800 (PST)
Sender: "Bryan D. Payne" <bdpayne@gmail.com>
From: "Bryan D. Payne" <bdpayne@acm.org>
Date: Wed, 26 Nov 2014 00:41:11 -0800
Message-Id: <1416991272-10277-1-git-send-email-bdpayne@acm.org>
Subject: [Qemu-devel] [PATCH 0/1] qmp: extend QMP to provide read/write
	access to physical memory
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org
Cc: "Bryan D. Payne" <bdpayne@acm.org>, lcapitulino@redhat.com

Summary:
This patch improves Qemu support for virtual machine introspection.

Background:
Virtual machine introspection (VMI) is a technique where one accesses the
memory of a (usually) paused guest. This access is typically used to perform
security checks, debugging, or malware analysis. The LibVMI project provides
and open source library that simplifies VMI programming. LibVMI supports 
both Xen and KVM environments.

Under KVM, LibVMI can work on systems today (albeit slowly) using the human
monitor command functionality to extract memory with the xp command. This
access is too slow for performance sensitive applications, so the LibVMI
project has created and maintained a QEMU patch that enables faster access.
We have used this patch for about 3 years now and it appears to be working
nicely for our community.

The patch in this email is an updated version of the LibVMI patch that aims
to conform to the Qemu coding guidelines. It is my hope that we can include
this in Qemu so that LibVMI users can leverage this faster access without
needing to do custom Qemu builds on their KVM systems.


Bryan D. Payne (1):
  qmp: extend QMP to provide read/write access to physical memory

 Makefile.target |   2 +-
 memory-access.c | 200 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 memory-access.h |  11 ++++
 monitor.c       |  10 +++
 qmp-commands.hx |  27 ++++++++
 5 files changed, 249 insertions(+), 1 deletion(-)
 create mode 100644 memory-access.c
 create mode 100644 memory-access.h

-- 
1.9.1