[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages

To: "Eslam Elnikety" <elnikety@xxxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Tue, 07 May 2019 06:11:33 -0600
Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wei.liu2@xxxxxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, Tim Deegan <tim@xxxxxxx>, Julien Grall <julien.grall@xxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Amit Shah <aams@xxxxxxxxxx>
Delivery-date: Tue, 07 May 2019 12:11:54 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

>>> On 07.05.19 at 13:34, <elnikety@xxxxxxxxxx> wrote:
> --- a/xen/common/page_alloc.c
> +++ b/xen/common/page_alloc.c
> @@ -214,6 +214,10 @@ custom_param("bootscrub", parse_bootscrub_param);
>  static unsigned long __initdata opt_bootscrub_chunk = MB(128);
>  size_param("bootscrub_chunk", opt_bootscrub_chunk);
>  
> + /* scrub-domheap -> Domheap pages are scrubbed when freed */
> +static bool __read_mostly opt_scrub_domheap;
> +boolean_param("scrub-domheap", opt_scrub_domheap);

Upon 2nd thought this, btw, would seem to be an excellent candidate
for becoming a runtime parameter.

> @@ -2378,9 +2382,10 @@ void free_domheap_pages(struct page_info *pg, unsigned 
> int order)
>              /*
>               * Normally we expect a domain to clear pages before freeing 
> them,
>               * if it cares about the secrecy of their contents. However, 
> after
> -             * a domain has died we assume responsibility for erasure.
> +             * a domain has died we assume responsibility for erasure. We do
> +             * scrub regardless if option scrub_domheap is set.
>               */
> -            scrub = d->is_dying || scrub_debug;
> +            scrub = d->is_dying || scrub_debug || opt_scrub_domheap;

Did you consider setting opt_scrub_domheap when scrub_debug is
set? This would shorten the (runtime) calculation here by a tiny bit,
at the price of doing one more thing once while booting.

Jan



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: Elnikety, Eslam
- Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: George Dunlap

References:
- [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: Eslam Elnikety

Prev by Date: Re: [Xen-devel] [PATCH RFC v3 2/2] x86/emulate: Send vm_event from emulate
Next by Date: Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
Previous by thread: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
Next by thread: Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.