WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-devel

Re: [Xen-ia64-devel] [Xen-devel] Call hypercall straightly from user spa

To: Tristan Gingold <tgingold@xxxxxxx>, "Xu, Anthony" <anthony.xu@xxxxxxxxx>
Subject: Re: [Xen-ia64-devel] [Xen-devel] Call hypercall straightly from user space
From: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date: Sat, 30 Dec 2006 15:58:08 +0000
Cc: xen-devel@xxxxxxxxxxxxxxxxxxx, xen-ia64-devel <xen-ia64-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Sat, 30 Dec 2006 07:57:57 -0800
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <20061230152238.GA16203@saphi>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AccsK0xhivBKQJgeEduS3AANk04WTA==
Thread-topic: [Xen-ia64-devel] [Xen-devel] Call hypercall straightly from user space
User-agent: Microsoft-Entourage/11.3.2.061213
On 30/12/06 3:22 pm, "Tristan Gingold" <tgingold@xxxxxxx> wrote:

>> As you mention before, we may call hypercall straightly from user space
>> rather than bouncing through guest kernel.
> Hi,
> 
> I haven't found the reference, but how security is addressed ?  How to prevent
> a user process from making such hypercalls ?

It would have to be enabled on a per-process basis by the guest kernel,
presumably during context switch.

 -- Keir



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel