Comment 51 for bug 1890501

Revision history for this message
Dan Smith (danms) wrote : Re: Soft reboot after live-migration reverts instance to original source domain XML (CVE-2020-17376)

Nick, I think that's a vast overstatement of the situation. Certainly not all major and fast-forward upgrades imply live migration if any/all VMs. In fact, in a fast-forward migration situation, there's really no reason to do the slide-puzzle dance with live-migrating VMs, since you can't avoid partial control plane downtime anyway. Some people do slide-puzzle their VMs to avoid having running VMs on a system doing a small upgrade (i.e. U->V) but that is far from a blanket rule or even recommendation.

I think we can keep this to "it affects live migration, for whatever you're doing". Certainly if someone is doing an upgrade (perhaps to get this patch) and doing live migration to fix it, it would be trivial to disable soft reboot via policy for a period of time while things get moved around, so it's not like there isn't a mitigation strategy.