[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] RE: Xen-devel Digest, Vol 38, Issue 7


  • To: "'Keir Fraser'" <keir.fraser@xxxxxxxxxxxxx>
  • From: "Andrey Kuzmin" <andrey.v.kuzmin@xxxxxxxxx>
  • Date: Wed, 2 Apr 2008 16:54:52 +0400
  • Cc: xen-devel@xxxxxxxxxxxxxxxxxxx, 'Stefan Berger' <stefanb@xxxxxxxxxx>
  • Delivery-date: Wed, 02 Apr 2008 05:55:23 -0700
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=reply-to:from:to:cc:references:in-reply-to:subject:date:organization:mime-version:content-type:content-transfer-encoding:x-mailer:thread-index:content-language:message-id; b=uiukzXdtZc5CTnUyBrYQou9BwDdeZiOL/PLBPubEtRLycj0myf9TUwKRhbc2gbOFqntwxU1y/Y/lOc5bxXaFnhQRYmivWrVo1A8kOEtcUwo2nCMx88E9PtNdrA6HZAm+/u+gqFQmRno1bq84bppYcuk5PwsIucY9uCwVzXiAfjY=
  • List-id: Xen developer discussion <xen-devel.lists.xensource.com>
  • Thread-index: AciUlHY/6OGoTrvlSyOARge47UopkQAK6X/Q

> -----Original Message-----
> Date: Wed, 02 Apr 2008 08:23:34 +0100
> From: Keir Fraser <keir.fraser@xxxxxxxxxxxxx>
> Subject: [Xen-devel] Re: [PATCH] [RFC] scrub pages when balloon frees
>       them
> To: Stefan Berger <stefanb@xxxxxxxxxx>,       xen-devel
>       <xen-devel@xxxxxxxxxxxxxxxxxxx>
> Message-ID: <C418F306.15961%keir.fraser@xxxxxxxxxxxxx>
> Content-Type: text/plain;     charset="US-ASCII"
> 
> The domain is responsible for scrubbing its own secrets while it is alive.

But not when domain shuts down - otherwise it breaks (quite reasonable)
kernel assumption that following shutdown memory pages won't be accessible
so that there's no need to scrub them. Stefan's suggestion seem to plug that
hole.

Regards,
Andrey

> 
>  -- Keir
> 
> On 2/4/08 02:46, "Stefan Berger" <stefanb@xxxxxxxxxx> wrote:
> 
> > When a domain is killed, all its memory pages are cleared. However, I
> > looked at the code path that is run when a domain releases memory from
> > the balloon and could not find code that would scrub these pages. So I
> > added this line, but I am wondering whether previously it was forgotten
> > or not done due to some other reason?
> >
> > Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxx>
> >


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel


 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.