[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] New heap API and scrubbing

  • To: Dan Magenheimer <dan.magenheimer@xxxxxxxxxx>, "Xen-Devel (E-mail)" <xen-devel@xxxxxxxxxxxxxxxxxxx>
  • From: Keir Fraser <keir.fraser@xxxxxxxxxxxxx>
  • Date: Wed, 11 Feb 2009 07:58:07 +0000
  • Cc:
  • Delivery-date: Tue, 10 Feb 2009 23:58:39 -0800
  • List-id: Xen developer discussion <xen-devel.lists.xensource.com>
  • Thread-index: AcmL0o+ydMHWuTqwREeHC+CVGpNAywAS+mtx
  • Thread-topic: [Xen-devel] New heap API and scrubbing
On 10/02/2009 22:53, "Dan Magenheimer" <dan.magenheimer@xxxxxxxxxx> wrote:

> Moreover, it appears that there are MANY calls throughout
> Xen to free_XXXheap_page/s() but I don't see much code
> that scrubs the pages before freeing them.  Isn't
> this a potential security issue?  Perhaps it should
> be easier to free+scrub pages?

Pages which are currently not scrubbed are either:
 1. Freed by a domain before it dies, so it has to scrub them.
 2. Xenheap pages or anonymous domheap pages which thus contained no guest
data and no security risk in not scrubbing them.

Feel free to add a free+scrub function.

 -- Keir



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.