WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-devel] Grant tables from dom0 userspace?

from [Cihula, Joseph] [Permanent Link][Original]
To: "Keir Fraser" <Keir.Fraser@xxxxxxxxxxxx>, "Jacob Gorm Hansen" <jacobg@xxxxxxx>
Subject: RE: [Xen-devel] Grant tables from dom0 userspace?
From: "Cihula, Joseph" <joseph.cihula@xxxxxxxxx>
Date: Thu, 9 Mar 2006 10:25:05 -0800
Cc: Andrew Warfield <andrew.warfield@xxxxxxxxxxxx>, xen-devel Devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Thu, 09 Mar 2006 18:26:02 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcZDpXB+FdSz1EVtTR27lmKX3GCDvgAAG5Gg
Thread-topic: [Xen-devel] Grant tables from dom0 userspace? 
(Combining w/ Christopher's reply:)

I would add my support to providing this as a common service to
userspace (as opposed to just creating a solution that works for your
project).

Using xc_foreign_mapping interfaces may work for dom0 code but it
requires the domain to be privileged and does not have fine-grained
permissions (i.e. if you can map something then you can map anything).
Grant tables are a much better, from a security POV, solution to sharing
memory.

Joseph Cihula
(Linux) Software Security Architect
Open Source Technology Center
Intel Corp.

*** These opinions are not necessarily those of my employer ***

On Thursday, March 09, 2006 10:13 AM,  Keir Fraser <> wrote:
> I think blktap gives an example how to do this, but it might be
> specific to aio right now. You could probably use some of the same
> hooks to provide a device file that you could mmap(), passing grant
> refs to map. I cc'ed Andy Warfield in case he has any ideas...
> 
> The only other supported mechanism is the xc_foreign mapping
> interfaces. 

On Thursday, March 09, 2006 10:10 AM,  Christopher Clark <> wrote:
> Grant tables aren't the right interface for use from userspace, which
> is why tools/libxc/xc_gnttab.c was removed. You should probably just
> write a kernel module to do the mapping for you using grant tables and
> then expose a custom interface to userspace from the module to trigger
> the mapping as you need.

> On 9 Mar 2006, at 17:59, Jacob Gorm Hansen wrote:
> 
>> I would like to share some pages between my domU graphics frontend
>> device, and the backend which runs in userspace in dom0. Right now I
>> am doing this with my own scheme, but presumably grant tables would
>> be the correct solution. 
>> 
>> Is it possible to use grant tables from dom0 userspace? There used to
>> be a file called tools/libxc/xc_gnttab.c but that seems to be gone
>> now.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] Grant tables from dom0 userspace?, Keir Fraser
Next by Date:  Re: [Xen-devel] [PATCH][XM-TEST] Add support for pulling initrd images from a repo, Paul Larson
Previous by Thread:  Re: [Xen-devel] Grant tables from dom0 userspace?, Hollis Blanchard
Next by Thread:  RE: [Xen-devel] Grant tables from dom0 userspace?, King, Steven R
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy