WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

[Xen-devel] Xen architecture question (How strong are the Xen boundaries

To: "'xen-devel@xxxxxxxxxxxxxxxxxxxxx'" <xen-devel@xxxxxxxxxxxxxxxxxxxxx>
Subject: [Xen-devel] Xen architecture question (How strong are the Xen boundaries?)
From: "Woloszynski, Charles" <charles.woloszynski@xxxxxxxxxxx>
Date: Thu, 19 Feb 2004 09:31:13 -0500
Cc: "Woloszynski, Charles" <charles.woloszynski@xxxxxxxxxxx>
Delivery-date: Thu, 19 Feb 2004 14:39:03 +0000
Envelope-to: steven.hand@xxxxxxxxxxxx
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx

I am working on a system that requires a system provides isolation between various system components and we are looking at using Xen to do this.  One of our requirements is that the code that enforces the separation is small and inspectable.  At first blush, the Xen code appears to meet this, but I have a nagging concern that a mis-designed GuestOS could bypass Xen.  I don't have any specific reason to believe this, but I wanted to ask if anyone can comment on whether this is possible, given the design of Xen.

So, the two questions are:
(1)  Can a GuestOS ever bypass the Xen boundaries? 
(2)  How big (in lines of code) is the subsystem in Xen that enforces this?

Thanks in advance.  Any help is greatly appreciated.

Charlie



Charlie Woloszynski
Innovative Concepts Inc.
703-893-2007 x506
charles.woloszynski@xxxxxxxxxxx

<Prev in Thread] Current Thread [Next in Thread>
  • [Xen-devel] Xen architecture question (How strong are the Xen boundaries?), Woloszynski, Charles <=