WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Fw: [Xen-devel] Xen on /. again

from [Steven Hand] [Permanent Link][Original]
To: Steven Hand <Steven.Hand@xxxxxxxxxxxx>
Subject: Re: Fw: [Xen-devel] Xen on /. again
From: Steven Hand <Steven.Hand@xxxxxxxxxxxx>
Date: Fri, 21 Jan 2005 08:08:54 +0000
Cc: david.nospam.hopwood@xxxxxxxxxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxxxx, Steven.Hand@xxxxxxxxxxxx
Delivery-date: Fri, 21 Jan 2005 08:09:48 +0000
Envelope-to: xen+James.Bulpin@xxxxxxxxxxxx
In-reply-to: Message from Steven Hand <Steven.Hand@xxxxxxxxxxxx> of "Fri, 21 Jan 2005 07:53:36 GMT." <E1Crtbs-0006mw-00@xxxxxxxxxxxxxxxxx>
List-archive: <http://sourceforge.net/mailarchive/forum.php?forum=xen-devel>
List-help: <mailto:xen-devel-request@lists.sourceforge.net?subject=help>
List-id: List for Xen developers <xen-devel.lists.sourceforge.net>
List-post: <mailto:xen-devel@lists.sourceforge.net>
List-subscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=subscribe>
List-unsubscribe: <https://lists.sourceforge.net/lists/listinfo/xen-devel>, <mailto:xen-devel-request@lists.sourceforge.net?subject=unsubscribe>
Sender: xen-devel-admin@xxxxxxxxxxxxxxxxxxxxx 
>
>>Mark Williamson wrote:
>>>>Also, I suppose you will wish to prevent covert channels between
>>>>domains, e.g. domains communicating using various timing attacks (I move
>>>>the disk head to the other end of the disk if I wish to tell you
>>>>something), or by allocating/freeing certains parts of memory.
>>>>
>>>>How much will you need to dumb down the VMs view of what is going on in
>>>>the machine to achieve this (not expose real time information, not
>>>>expose real page tables), and how much of a VMM will there be left when
>>>>you are done?
>>> 
>>> Well domains are not aware of each other's memory usage, so I wouldn't have
 
>>> thought that allocation / exposing real page tables would matter.  (Except 
>>> dom0 can of course see everything if it wants).
>>
>>Information about other domains' memory usage is leaked via the
>>hardware->physical mapping.
>
>Unprivileged domains cannot see each others hardware->physical mappings. 
 
Oops - I read this originally as 'virtual->physical'. The MPT does indeed
currently allow domains to view each others hardware->physical mappings. 
Replacing the single MPT with per-domain viewable sparse mapping structures 
is possible though, albeit at a performance cost.  Full virt with VT-x also 
eliminates this issue.

cheers, 

S.



-------------------------------------------------------
This SF.Net email is sponsored by: IntelliVIEW -- Interactive Reporting
Tool for open source databases. Create drag-&-drop reports. Save time
by over 75%! Publish reports on the web. Export to DOC, XLS, RTF, etc.
Download a FREE copy at http://www.intelliview.com/go/osdn_nl
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Fw: [Xen-devel] Xen on /. again, Steven Hand
Next by Date:  [Xen-devel] Updated xen RPMs for SUSE Linux, Kurt Garloff
Previous by Thread:  Re: Fw: [Xen-devel] Xen on /. again, Steven Hand
Next by Thread:  Re: Fw: [Xen-devel] Xen on /. again, Jody Belka
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy