[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] help--Does Xen allow us to grant all the machine memory access authority to another domain rather than Dom0 ?

To: lelema.cn <lelema.cn@xxxxxxxxx>
From: Ian Campbell <Ian.Campbell@xxxxxxxxxx>
Date: Mon, 4 Aug 2014 12:27:24 +0100
Cc: xen-devel@xxxxxxxxxxxxxxxxxxxx
Delivery-date: Mon, 04 Aug 2014 11:27:35 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On Mon, 2014-08-04 at 19:21 +0800, lelema.cn wrote:
> Hello all,
> 
> 
> I want to build an isolated domain (noted as 'Newdomain' below) to
> collect information of the whole machine memory used by all the VMs,
> including dom0.
> So I need to grant the privilege of reading all the machine memory to
> 'Newdomain'. 
> 
> 
> Below are my questions and some immature ideas that needs your help to
> evaluate them:
> 
> 
> 0, Is it possible to do this ?

This is the sort of thing which XSM[0] is designed to allow you to
achieve. I'm afraid I don't know the specifics of how one would
configure it for your exact use case.

Ian.
[0] http://wiki.xen.org/wiki/Xen_Security_Modules_:_XSM-FLASK




_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] help--Does Xen allow us to grant all the machine memory access authority to another domain rather than Dom0 ?
  - From: lelema.cn

Prev by Date: Re: [Xen-devel] [PATCH v13 05/10] x86: dynamically attach/detach QoS monitoring service for a guest
Next by Date: [Xen-devel] [PATCH RFC V4 0/5] Basic guest memory introspection support
Previous by thread: [Xen-devel] help--Does Xen allow us to grant all the machine memory access authority to another domain rather than Dom0 ?
Next by thread: [Xen-devel] [PATCH RFC V4 0/5] Basic guest memory introspection support
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.