From: Stefan Hajnoczi <stefanha@redhat.com>
To: Steven Rostedt <rostedt@goodmis.org>
Cc: kvm@vger.kernel.org, Stefan Hajnoczi <stefanha@gmail.com>,
yoshihiro.yunomae.ez@hitachi.com, mtosatti@redhat.com,
qemu-devel@nongnu.org, peterx@redhat.com,
Luiz Capitulino <lcapitulino@redhat.com>,
linux-trace-users@vger.kernel.org, pbonzini@redhat.com
Subject: Re: [Qemu-devel] [RFC] host and guest kernel trace merging
Date: Mon, 7 Mar 2016 15:17:05 +0000 [thread overview]
Message-ID: <20160307151705.GD20937@stefanha-x1.localdomain> (raw)
In-Reply-To: <20160304082311.5ccd1a33@gandalf.local.home>
[-- Attachment #1: Type: text/plain, Size: 1488 bytes --]
On Fri, Mar 04, 2016 at 08:23:11AM -0500, Steven Rostedt wrote:
> The problem I have with the guest server, and something that we may be
> able to fix later on, but should always keep it in the back of our
> minds, is the security issue. For this to work, the guest server needs
> to run as root. It will have an open socket (network or to host), that
> will enable tracing on the guest. There needs to be some sort of
> verification on that connection to prevent anyone from connecting to it.
>
> In the protocol for the connection between guest and host, I'll
> currently add a "security" feature, that will allow the guest to tell
> whomever is connecting to it, what type of security feature it wants.
> For now it will be TRACE_CMD_NO_SECURITY. But that will have to change
> in the future.
qemu-guest-agent runs inside the guest and replies to RPC commands from
the host. It is used for backups, shutdown, network configuration, etc.
From time to time people have wanted the ability to execute an arbitrary
command inside the guest and return the output. This functionality has
never been merged, probably for the security reason.
A tracing server that runs inside the guest is comparable to
qemu-guest-agent. As long as the tracing server requires manual
commands to start it and does not run by default, then I think the
security issue can be kept at bay. It's a powerful tool that requires
explicit guest administrator action to enable.
Stefan
[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 473 bytes --]
next prev parent reply other threads:[~2016-03-07 15:17 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-03-03 19:35 [Qemu-devel] [RFC] host and guest kernel trace merging Luiz Capitulino
2016-03-04 11:19 ` Stefan Hajnoczi
2016-03-04 13:23 ` Steven Rostedt
2016-03-07 15:17 ` Stefan Hajnoczi [this message]
2016-03-07 15:49 ` Steven Rostedt
2016-03-07 16:10 ` Eric Blake
2016-03-07 16:26 ` Steven Rostedt
2016-03-07 17:13 ` Paolo Bonzini
2016-03-24 5:16 ` Peter Xu
2016-03-24 13:02 ` Luiz Capitulino
2016-03-25 1:53 ` Peter Xu
2016-03-24 8:42 ` Peter Xu
2016-03-24 10:13 ` Stefan Hajnoczi
2016-03-25 2:22 ` Peter Xu
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20160307151705.GD20937@stefanha-x1.localdomain \
--to=stefanha@redhat.com \
--cc=kvm@vger.kernel.org \
--cc=lcapitulino@redhat.com \
--cc=linux-trace-users@vger.kernel.org \
--cc=mtosatti@redhat.com \
--cc=pbonzini@redhat.com \
--cc=peterx@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=rostedt@goodmis.org \
--cc=stefanha@gmail.com \
--cc=yoshihiro.yunomae.ez@hitachi.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).