|
|
|
|
|
|
|
|
|
|
xen-devel
[Xen-devel] RE: information leaking between domains via granted pages?
> -----Original Message-----
> From: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
> [mailto:xen-devel-bounces@xxxxxxxxxxxxxxxxxxx] On Behalf Of
> James Harper
> Sent: Monday, March 03, 2008 7:35 PM
> To: xen-devel@xxxxxxxxxxxxxxxxxxx
> Subject: [Xen-devel] information leaking between domains via
> granted pages?
>
> Is there a statement anywhere regarding information that
> could be leaked or modified between domains when pages are granted?
>
> Eg, Dom0 sends a network packet to DomU. The network data
> only uses 64 bytes in the page, but DomU (via a specially
> crafted netfront driver) can access and record all the other
> data in the page...
>
This is not a problem today as DomU is not granted access to any Dom0 page.
DomU is the one which grants access to dom0 both for TX and RX.
On the other hand dom0 can access any data in granted domU pages but this is
OK as we trust dom0.
Renato
> James
>
>
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-devel
>
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
|
|
|
|
|