[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages

To: "Eslam Elnikety" <elnikety@xxxxxxxxxx>,<george.dunlap@xxxxxxxxxx>
From: "Jan Beulich" <JBeulich@xxxxxxxx>
Date: Tue, 07 May 2019 07:55:27 -0600
Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wei.liu2@xxxxxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, Tim Deegan <tim@xxxxxxx>, Julien Grall <julien.grall@xxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Amit Shah <aams@xxxxxxxxxx>
Delivery-date: Tue, 07 May 2019 13:55:45 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

>>> On 07.05.19 at 15:15, <george.dunlap@xxxxxxxxxx> wrote:
> On 5/7/19 1:11 PM, Jan Beulich wrote:
>>>>> On 07.05.19 at 13:34, <elnikety@xxxxxxxxxx> wrote:
>>> --- a/xen/common/page_alloc.c
>>> +++ b/xen/common/page_alloc.c
>>> @@ -214,6 +214,10 @@ custom_param("bootscrub", parse_bootscrub_param);
>>>  static unsigned long __initdata opt_bootscrub_chunk = MB(128);
>>>  size_param("bootscrub_chunk", opt_bootscrub_chunk);
>>>  
>>> + /* scrub-domheap -> Domheap pages are scrubbed when freed */
>>> +static bool __read_mostly opt_scrub_domheap;
>>> +boolean_param("scrub-domheap", opt_scrub_domheap);
>> 
>> Upon 2nd thought this, btw, would seem to be an excellent candidate
>> for becoming a runtime parameter.
>> 
>>> @@ -2378,9 +2382,10 @@ void free_domheap_pages(struct page_info *pg, 
>>> unsigned int order)
>>>              /*
>>>               * Normally we expect a domain to clear pages before freeing 
>>> them,
>>>               * if it cares about the secrecy of their contents. However, 
>>> after
>>> -             * a domain has died we assume responsibility for erasure.
>>> +             * a domain has died we assume responsibility for erasure. We 
>>> do
>>> +             * scrub regardless if option scrub_domheap is set.
>>>               */
>>> -            scrub = d->is_dying || scrub_debug;
>>> +            scrub = d->is_dying || scrub_debug || opt_scrub_domheap;
>> 
>> Did you consider setting opt_scrub_domheap when scrub_debug is
>> set? This would shorten the (runtime) calculation here by a tiny bit,
>> at the price of doing one more thing once while booting.
> 
> Just for clarification Jan -- did you mean, "I'm happy for this to go in
> as it is, but if you feel like it, here are two improvements"?

Yes (maybe "I'd prefer" to replace "if you feel like it").

Jan



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

References:
- [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: Eslam Elnikety
- Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
  - From: George Dunlap

Prev by Date: [Xen-devel] [PATCH v2] libxl: make vkbd tunable for HVM guests
Next by Date: Re: [Xen-devel] [PATCH 3/3] xen/arm: fix mask calculation in init_pdx
Previous by thread: Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
Next by thread: Re: [Xen-devel] [PATCH v2] mm: option to _always_ scrub freed domheap pages
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.