WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

[Xen-devel] Hypercall by DomU Application

To: xen-devel@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-devel] Hypercall by DomU Application
From: Srujan Kotikela <ksrujandas@xxxxxxxxx>
Date: Tue, 25 Oct 2011 20:16:47 -0500
Delivery-date: Tue, 25 Oct 2011 18:17:53 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; bh=soSTtt9LuLgKWDzTZhWm9YH0y4HG9BfYYwNI9XBvIGU=; b=gtNZEI81Phw3DPNjN5Z6LCVp/5e0IfoI0yN4KAZ4BsOSJGV184vnxRqvKRxDA/CgWi VTJ+YRZWGR6RodjIK9oYEqzZMwVJTZk1OvIQGHTyU5rrY27Npd08a4TrtGms7pg4F5LM roLFVaa/E4sPBxldov24XkRohQIzeTxtutY8A=
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Hi,

I am working on a security architecture. In this architecture, the application in DomU has to communicate directly with the hypervisor. But as I can see, the xen architecture allows only DomU kernel to raise a hypercall. I am planning to enable application to communicate with xen directly. I am assuming, setting up a trap gate with Ring-3 access should do the trick. I have few questions regarding this.

Is my idea feasible? ==> (  _set_gate(idt_table+HYPERCALL_VECTOR, 15, 3, &hypercall); )

Are there any security/performance/functional implications with this approach?

Thanks and regards,
SDK.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
<Prev in Thread] Current Thread [Next in Thread>