WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] RE: information leaking between domains via granted page

from [Keir Fraser] [Permanent Link][Original]
To: James Harper <james.harper@xxxxxxxxxxxxxxxx>, "Santos, Jose Renato G" <joserenato.santos@xxxxxx>, <xen-devel@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Xen-devel] RE: information leaking between domains via granted pages?
From: Keir Fraser <keir.fraser@xxxxxxxxxxxxx>
Date: Tue, 04 Mar 2008 08:49:06 +0000
Delivery-date: Tue, 04 Mar 2008 00:50:19 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <AEC6C66638C05B468B556EA548C1A77D013DBE66@trantor>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: Ach9qLXF4BxOPME/Qtm5dC52XyjJVwAEJdzAAAXR+1AAAQFcTA==
Thread-topic: [Xen-devel] RE: information leaking between domains via granted pages?
User-agent: Microsoft-Entourage/11.3.6.070618 
On 4/3/08 08:21, "James Harper" <james.harper@xxxxxxxxxxxxxxxx> wrote:

>>   This is not a problem today as DomU is not granted access to any
> Dom0
>> page. DomU is the one which grants access to dom0 both for TX and RX.
>>   On the other hand dom0 can access any data in granted domU pages but
>> this is OK as we trust dom0.
> 
> Maybe I'm mistaken about the way 'page flipping' on the rx path works
> then... care to enlighten me?

The flipping path is not high performance these days as we expect only very
old domUs to use it. All skbuffs destined for a flipping interface are
laundered through netbk_copy_skb(). Note its judicious use of __GFP_ZERO.

 -- Keir



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] [PATCH][retry 2][1/2] new platform hypervisor call to get APICIDs, Keir Fraser
Next by Date:  RE: [Xen-devel] RE: information leaking between domains via granted pages?, James Harper
Previous by Thread:  [Xen-devel] RE: information leaking between domains via granted pages?, James Harper
Next by Thread:  RE: [Xen-devel] RE: information leaking between domains via granted pages?, James Harper
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy