qemu for xen secure by default
play

QEMU for Xen secure by default Deprivileging the PC system emulator - PowerPoint PPT Presentation

Nov 24, 2022 •45 likes •115 views

QEMU for Xen secure by default Deprivileging the PC system emulator Ian Jackson <ian.jackson@eu.citrix.com> FOSDEM 2016 with assistance from Stefano Stabellini guest guest Xen PV driver IDE driver Xen PV protocol mmio, dma, etc.

  1. QEMU for Xen secure by default Deprivileging the PC system emulator Ian Jackson <ian.jackson@eu.citrix.com> FOSDEM 2016 with assistance from Stefano Stabellini

  2. guest guest Xen PV driver IDE driver Xen PV protocol mmio, dma, etc. qemu Emulated IDE controller Xen PV backend (usually), syscalls (usually) dom0 (usu.dom0) kernel Device driver kernel Device driver PV HVM

  3. ... ... ... ... ... http://xenbits.xen.org/xsa/ from Xen Security Team advisories page,

  4. Xen on x86 modes, and device model bug implications Current status for users of upstream Xen and distros and future plans Status Device model Notes bugs mean PV Fully supported Safe (no DM) Only modified guests HVM qemu in dom0 Fully supported Vulnerable Current default as root HVM qemu stub DM Upstream but not Safe Ancient qemu qemu-xen-trad. in most distros. Build system problems HVM qemu stub DM In progress Safe Rump build system rump kernel Hard work! is mini distro Targeting HVM qemu dom0 No privilege esc. Defence in depth Xen 4.7 not as root Maybe dom0 DoS Hopefully, will be default

  5. Xen on x86 modes, and device model bug implications Current status for users of upstream Xen and distros and future plans Status Device model Notes bugs mean PV Fully supported Safe (no DM) Only modified guests HVM qemu in dom0 Fully supported Vulnerable Current default as root HVM qemu stub DM Upstream but not Safe Ancient qemu qemu-xen-trad. in most distros. Build system problems HVM qemu stub DM In progress Safe Rump build system rump kernel Hard work! is mini distro Targeting HVM qemu dom0 No privilege esc. Defence in depth Xen 4.7 not as root Maybe dom0 DoS Hopefully, will be default

  6. qemu device model process guest dom0 kernel guest "dma" domain mmio handling net, storage control ioport handling etc. access interrupts underlying Xen disk, network, etc.

  7. Xen on x86 modes, and device model bug implications Current status for users of upstream Xen and distros and future plans Status Device model Notes bugs mean PV Fully supported Safe (no DM) Only modified guests HVM qemu in dom0 Fully supported Vulnerable Current default as root HVM qemu stub DM Upstream but not Safe Ancient qemu qemu-xen-trad. in most distros. Build system problems HVM qemu stub DM In progress Safe Rump build system rump kernel Hard work! is mini distro Targeting HVM qemu dom0 No privilege esc. Defence in depth Xen 4.7 not as root Maybe dom0 DoS Hopefully, will be default

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

QEMU 2.0 and Beyond CloudOpen 2013 Anthony Liguori &lt;anthony@codemonkey.ws&gt; About QEMU

QEMU 2.0 and Beyond CloudOpen 2013 Anthony Liguori &lt;anthony@codemonkey.ws&gt; About QEMU

QEMU 2.0 and Beyond CloudOpen 2013 Anthony Liguori &lt;anthony@codemonkey.ws&gt; About QEMU is a fast full system simulator and virtualization engine QEMU is Open Source hardware emulation KVM Xen Android SDK (fork)

431 views • 22 slides
Merging QEMU-DM upstream Taking the '-dm' out of qemu-dm Anthony Liguori aliguori@us.ibm.com

Merging QEMU-DM upstream Taking the '-dm' out of qemu-dm Anthony Liguori aliguori@us.ibm.com

Merging QEMU-DM upstream Taking the '-dm' out of qemu-dm Anthony Liguori aliguori@us.ibm.com IBM Linux Technology Center XenSummit April 16th, 2007 Linux is a registered trademark of Linus Torvalds. What's qemu-dm? HVM device

430 views • 13 slides
QEMU internal APIs How abstractions inside QEMU (don't) work together Eduardo Habkost

QEMU internal APIs How abstractions inside QEMU (don't) work together Eduardo Habkost

QEMU internal APIs How abstractions inside QEMU (don't) work together Eduardo Habkost &lt;ehabkost@redhat.com&gt; 1 Contents Context: QEMU features and interfaces Overview of some internal QEMU APIs Interaction between different abstractions

899 views • 70 slides
Secure by Default Web Applications With Apache Sling Robert Munteanu, Adobe Systems ApacheCon

Secure by Default Web Applications With Apache Sling Robert Munteanu, Adobe Systems ApacheCon

Secure by Default Web Applications With Apache Sling Secure by Default Web Applications With Apache Sling Robert Munteanu, Adobe Systems ApacheCon Core 2016 http://robert.muntea.nu @rombert Who I am $DAYJOB Open Source Adobe

610 views • 40 slides
Towards a more expressive and introspectable QEMU command line Markus Armbruster

Towards a more expressive and introspectable QEMU command line Markus Armbruster

Towards a more expressive and introspectable QEMU command line Markus Armbruster &lt;armbru@redhat.com&gt; KVM Forum 2017 Part I Things we want from the command line A simple example You could run QEMU like this: $ qemu -s -machine

953 views • 83 slides
Improving the QEMU Event Loop Fam Zheng Red Hat KVM Forum 2015 Agenda The event loops in

Improving the QEMU Event Loop Fam Zheng Red Hat KVM Forum 2015 Agenda The event loops in

Improving the QEMU Event Loop Fam Zheng Red Hat KVM Forum 2015 Agenda The event loops in QEMU Challenges Consistency Scalability Correctness The event loops in QEMU QEMU from a mile away Main loop from 10 meters The

523 views • 35 slides
io_uring in QEMU: high-performance disk IO for Linux FOSDEM 2020 Julia Suvorova, Red Hat

io_uring in QEMU: high-performance disk IO for Linux FOSDEM 2020 Julia Suvorova, Red Hat

io_uring in QEMU: high-performance disk IO for Linux FOSDEM 2020 Julia Suvorova, Red Hat Software Engineer 1 Agenda What well discuss today io_uring API QEMU structure Features of io_uring and how they helped QEMU Benchmarks What

634 views • 20 slides
CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of

CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of

CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of f the Common Principles Minimize attack Secure by surface area Default Principle of Fail-Safe Least Stance Privilege Secure the

975 views • 56 slides
Secure by default Anti-exploit techniques and hardenings in SUSE products Johannes Segitz SUSE

Secure by default Anti-exploit techniques and hardenings in SUSE products Johannes Segitz SUSE

Secure by default Anti-exploit techniques and hardenings in SUSE products Johannes Segitz SUSE Security Team 2019-04-02/04 1 of 46 Who am I? Johannes Segitz, security engineer (Nuremberg, Germany) Code review Product pentesting 2 of

1.49k views • 122 slides
QEMU Support for the RISC-V Instruction Set Architecture Sagar Karandikar

QEMU Support for the RISC-V Instruction Set Architecture Sagar Karandikar

QEMU Support for the RISC-V Instruction Set Architecture Sagar Karandikar sagark@eecs.berkeley.edu KVM Forum 2016 https://github.com/riscv/riscv-qemu Outline Why RISC-V? Benefits of an Open ISA RISC-V ISA Basics Virtualization

536 views • 42 slides
Testing QEMU emulated devices using qtest Marc Mar Barcel &lt;marc.mari.barcelo@gmail.com&gt;

Testing QEMU emulated devices using qtest Marc Mar Barcel &lt;marc.mari.barcelo@gmail.com&gt;

Testing QEMU emulated devices using qtest Marc Mar Barcel &lt;marc.mari.barcelo@gmail.com&gt; KVM Forum 2014 Marc Mar Testing QEMU emulated devices using qtest 2 Who am I? Computer Science student Worked on QEMU in GSoC project

597 views • 44 slides
Converging QEMU and TCMU for Container Storage Huamin Chen Red Hat @root_fs

Converging QEMU and TCMU for Container Storage Huamin Chen Red Hat @root_fs

Converging QEMU and TCMU for Container Storage Huamin Chen Red Hat @root_fs https://github.com/rootfs https://huaminchen.wordpress.com/ Agenda Background Collaboration with Andy Grover (TCMU) and Fem Zheng (QEMU) Scope

2.75k views • 14 slides
Backing Chain Management in libvirt and qemu Eric Blake &lt;eblake@redhat.com&gt; KVM Forum,

Backing Chain Management in libvirt and qemu Eric Blake &lt;eblake@redhat.com&gt; KVM Forum,

Backing Chain Management in libvirt and qemu Eric Blake &lt;eblake@redhat.com&gt; KVM Forum, August 2015 In this presentation How does the qcow2 format track point-in-time snapshots What are the qemu building blocks for managing backing

1.6k views • 101 slides
Evaluating storage APIs for QEMU Anthony Liguori aliguori@us.ibm.com Open Virtualization

Evaluating storage APIs for QEMU Anthony Liguori aliguori@us.ibm.com Open Virtualization

Evaluating storage APIs for QEMU Anthony Liguori aliguori@us.ibm.com Open Virtualization IBM Linux Technology Center Linux Plumbers Conference 2009 Linux is a registered trademark of Linus Torvalds. The V-Word QEMU is used by Xen and

777 views • 52 slides
Live Block Device Operations in QEMU Kashyap Chamarthy &lt;kashyap@redhat.com&gt; FOSDEM 2018

Live Block Device Operations in QEMU Kashyap Chamarthy &lt;kashyap@redhat.com&gt; FOSDEM 2018

Live Block Device Operations in QEMU Kashyap Chamarthy &lt;kashyap@redhat.com&gt; FOSDEM 2018 Brussels 1 / 34 Part I Background 2 / 34 KVM / QEMU virtualization components OpenStack libguestfs Compute (Nova) KubeVirt guestfish ( Virt

696 views • 54 slides
An Updated Overview of the QEMU Storage Stack Stefan Hajnoczi stefanha@linux.vnet.ibm.com

An Updated Overview of the QEMU Storage Stack Stefan Hajnoczi stefanha@linux.vnet.ibm.com

An Updated Overview of the QEMU Storage Stack Stefan Hajnoczi stefanha@linux.vnet.ibm.com Open Virtualization IBM Linux Technology Center 2011 Linux is a registered trademark of Linus Torvalds. The topic What is the QEMU storage

408 views • 26 slides
The Collision Security of Tandem-DM in the Ideal Cipher Model Jooyoung Lee 1 Martijn Stam 2 John

The Collision Security of Tandem-DM in the Ideal Cipher Model Jooyoung Lee 1 Martijn Stam 2 John

The Collision Security of Tandem-DM in the Ideal Cipher Model Jooyoung Lee 1 Martijn Stam 2 John Steinberger 3 1 Faculty of Mathematics and Statistics, Sejong University, Seoul, Korea 2 Department of Computer Science, University of Bristol,

647 views • 52 slides
DM organisation and reviews William OMullane Data Management LSST 5 th March 2017, LSST JTM,

DM organisation and reviews William OMullane Data Management LSST 5 th March 2017, LSST JTM,

DM organisation and reviews William OMullane Data Management LSST 5 th March 2017, LSST JTM, LA, Califronia, USA. Outline of the talk 1 Introducion DM Organisation 2 3 Milesones and Reviews DM Organisation | William OMullane |

341 views • 22 slides
Non-Standard Approach to J.F. Colombeaus Non-Linear Theory of Generalized Functions and a

Non-Standard Approach to J.F. Colombeaus Non-Linear Theory of Generalized Functions and a

Non-Standard Approach to J.F. Colombeaus Non-Linear Theory of Generalized Functions and a Soliton-Like Solution of Hopfs Equation Guy Berger (bergerguy@yahoo.com) and *Todor D. Todorov (ttodorov@calpoly.edu) Mathematics Department

565 views • 34 slides
of Sporadic DAG-Tasks with Arbitrary Deadline Andrea Parri, Alessandro Biondi and Mauro Marinoni

of Sporadic DAG-Tasks with Arbitrary Deadline Andrea Parri, Alessandro Biondi and Mauro Marinoni

Response Time Analysis for G-EDF and G-DM Scheduling of Sporadic DAG-Tasks with Arbitrary Deadline Andrea Parri, Alessandro Biondi and Mauro Marinoni Scuola Superiore SantAnna Pisa, Italy 1 Introduction Multicore revolution New

573 views • 41 slides
Soliton decomposition of the Box-Ball System Leonardo T. Rolla with Pablo A. Ferrari, Chi Nguyen,

Soliton decomposition of the Box-Ball System Leonardo T. Rolla with Pablo A. Ferrari, Chi Nguyen,

Soliton decomposition of the Box-Ball System Leonardo T. Rolla with Pablo A. Ferrari, Chi Nguyen, Minmin Wang Resources Simulation https://mate.dm.uba.ar/leorolla/simulations/bbs.html (on a 1d torus wrapped around a 2d torus) These slides

816 views • 65 slides
U.S. Department of Homeland Securitys Emergency Interoperable Standards Efforts Presented to

U.S. Department of Homeland Securitys Emergency Interoperable Standards Efforts Presented to

U.S. Department of Homeland Securitys Emergency Interoperable Standards Efforts Presented to the Workshop and Demonstration of Advances in Standards for Public Warning Chip Hines, PMP Program Manager, Disaster Management Office for

200 views • 16 slides
NICT Use Cases and Requirements for New Models of Human Language to Support Mobile Conversational

NICT Use Cases and Requirements for New Models of Human Language to Support Mobile Conversational

W3C: Workshop on Conversational Applications, June 2010, NICT Use Cases and Requirements for New Models of Human Language to Support Mobile Conversational Systems Chiori Hori and Teruhisa Misu Spoken Language Communication Group NICT, Japan

473 views • 12 slides
one coin, two sides: the microwave and gamma-ray haze Greg Dobler (KITP/UCSB) one coin, two

one coin, two sides: the microwave and gamma-ray haze Greg Dobler (KITP/UCSB) one coin, two

one coin, two sides: the microwave and gamma-ray haze Greg Dobler (KITP/UCSB) one coin, two sides: the microwave and gamma-ray haze Greg Dobler (KITP/UCSB) the Fermi haze from DM annihilation: halo shapes and anisotropic diffusion Greg Dobler

533 views • 38 slides

More recommend