[Xen-devel] RE: Xen-devel Digest, Vol 38, Issue 7

To:	"'Keir Fraser'" <keir.fraser@xxxxxxxxxxxxx>
Subject:	[Xen-devel] RE: Xen-devel Digest, Vol 38, Issue 7
From:	"Andrey Kuzmin" <andrey.v.kuzmin@xxxxxxxxx>
Date:	Wed, 2 Apr 2008 16:54:52 +0400
Cc:	xen-devel@xxxxxxxxxxxxxxxxxxx, 'Stefan Berger' <stefanb@xxxxxxxxxx>
Delivery-date:	Wed, 02 Apr 2008 05:55:23 -0700
Dkim-signature:	v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:reply-to:from:to:cc:references:in-reply-to:subject:date:organization:mime-version:content-type:content-transfer-encoding:x-mailer:thread-index:content-language:message-id; bh=0wtMOE9Nl0c20d37/q9agtjoAux9w80iv7aLo/Y2MYc=; b=lUv1AZKEQw8a0kBoP+lxsH/j96sD8lFt5RXxeM55SC+YCvpjEsKHvALd5FDfpdtoqoJ0ge8FuBn4jrU/DI4YWehm7rqN6+XeDP4sO0C3z7pw5GDXhmZLrJNb2Y3K02pJ7j5tZ5CTGoYz39kaVIXWKmxpIkbbUK4vGWembxm2IdI=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=reply-to:from:to:cc:references:in-reply-to:subject:date:organization:mime-version:content-type:content-transfer-encoding:x-mailer:thread-index:content-language:message-id; b=uiukzXdtZc5CTnUyBrYQou9BwDdeZiOL/PLBPubEtRLycj0myf9TUwKRhbc2gbOFqntwxU1y/Y/lOc5bxXaFnhQRYmivWrVo1A8kOEtcUwo2nCMx88E9PtNdrA6HZAm+/u+gqFQmRno1bq84bppYcuk5PwsIucY9uCwVzXiAfjY=
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxx
In-reply-to:	<E1JgxZB-0000Au-TM@host-192-168-0-1-bcn-london>
List-help:	<mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id:	Xen developer discussion <xen-devel.lists.xensource.com>
List-post:	<mailto:xen-devel@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Organization:	Private person
References:	<E1JgxZB-0000Au-TM@host-192-168-0-1-bcn-london>
Reply-to:	andrey.v.kuzmin@xxxxxxxxx
Sender:	xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index:	AciUlHY/6OGoTrvlSyOARge47UopkQAK6X/Q

> -----Original Message-----
> Date: Wed, 02 Apr 2008 08:23:34 +0100
> From: Keir Fraser <keir.fraser@xxxxxxxxxxxxx>
> Subject: [Xen-devel] Re: [PATCH] [RFC] scrub pages when balloon frees
>       them
> To: Stefan Berger <stefanb@xxxxxxxxxx>,       xen-devel
>       <xen-devel@xxxxxxxxxxxxxxxxxxx>
> Message-ID: <C418F306.15961%keir.fraser@xxxxxxxxxxxxx>
> Content-Type: text/plain;     charset="US-ASCII"
> 
> The domain is responsible for scrubbing its own secrets while it is alive.

But not when domain shuts down - otherwise it breaks (quite reasonable)
kernel assumption that following shutdown memory pages won't be accessible
so that there's no need to scrub them. Stefan's suggestion seem to plug that
hole.

Regards,
Andrey

> 
>  -- Keir
> 
> On 2/4/08 02:46, "Stefan Berger" <stefanb@xxxxxxxxxx> wrote:
> 
> > When a domain is killed, all its memory pages are cleared. However, I
> > looked at the code path that is run when a domain releases memory from
> > the balloon and could not find code that would scrub these pages. So I
> > added this line, but I am wondering whether previously it was forgotten
> > or not done due to some other reason?
> >
> > Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxx>
> >


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

WARNING - OLD ARCHIVES

xen-devel

[Xen-devel] RE: Xen-devel Digest, Vol 38, Issue 7