From: "Daniel P. Berrangé" <berrange@redhat.com>
To: Priyankar Jain <priyankar.jain@nutanix.com>
Cc: "Peter Turschmid" <peter.turschm@nutanix.com>,
qemu-devel@nongnu.org,
"Marc-André Lureau" <marcandre.lureau@redhat.com>,
"Raphael Norwitz" <raphael.norwitz@nutanix.com>
Subject: Re: [RFC] dbus-vmstate: Connect to the dbus only during the migration phase
Date: Thu, 19 Nov 2020 18:47:24 +0000 [thread overview]
Message-ID: <20201119184724.GO579364@redhat.com> (raw)
In-Reply-To: <1605810535-51254-1-git-send-email-priyankar.jain@nutanix.com>
On Thu, Nov 19, 2020 at 06:28:55PM +0000, Priyankar Jain wrote:
> Today, dbus-vmstate maintains a constant connection to the dbus. This is
> problematic for a number of reasons:
> 1. If dbus-vmstate is attached during power-on, then the device holds
> the unused connection for a long period of time until migration
> is triggered, thus unnecessarily occupying dbus.
> 2. Similarly, if the dbus is restarted in the time period between VM
> power-on (dbus-vmstate initialisation) and migration, then the
> migration will fail. The only way to recover would be by
> re-initialising the dbus-vmstate object.
> 3. If dbus is not available during VM power-on, then currently dbus-vmstate
> initialisation fails, causing power-on to fail.
> 4. For a system with large number of VMs, having multiple QEMUs connected to
> the same dbus can lead to a DoS for new connections.
The expectation is that there is a *separate* dbus daemon created for
each QEMU instance. There should never be multiple QEMUs connected to
the same dbus instance, nor should it ever connect to the common dbus
instances provided by most Linux distros.
None of these 4 issues should apply when each QEMU has its own dedicated
dbus instance AFAICT.
Regards,
Daniel
--
|: https://berrange.com -o- https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org -o- https://fstop138.berrange.com :|
|: https://entangle-photo.org -o- https://www.instagram.com/dberrange :|
next prev parent reply other threads:[~2020-11-19 18:49 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-11-19 18:28 [RFC] dbus-vmstate: Connect to the dbus only during the migration phase Priyankar Jain
2020-11-19 18:47 ` Daniel P. Berrangé [this message]
2020-12-02 15:55 ` priyankar jain
2020-12-02 16:16 ` Daniel P. Berrangé
2020-12-02 17:03 ` priyankar jain
2020-12-02 17:23 ` Daniel P. Berrangé
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20201119184724.GO579364@redhat.com \
--to=berrange@redhat.com \
--cc=marcandre.lureau@redhat.com \
--cc=peter.turschm@nutanix.com \
--cc=priyankar.jain@nutanix.com \
--cc=qemu-devel@nongnu.org \
--cc=raphael.norwitz@nutanix.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).