[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Read-only locking of Guest Memory pages

  • To: George Dunlap <dunlapg@xxxxxxxxx>
  • From: Srujan Kotikela <ksrujandas@xxxxxxxxx>
  • Date: Wed, 15 Jun 2011 07:14:57 -0500
  • Cc: xen-devel@xxxxxxxxxxxxxxxxxxx
  • Delivery-date: Wed, 15 Jun 2011 05:15:35 -0700
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=vPmfyRx+5NQFT5g5jwEBGPSKkd0vQCApYOggXZYRR9Z3BHYE2DQxVD/cgIuSgJk9Q9 0i/DkEwHdlFNXkIE5I6HEdf5aDn8o1rye4jaQWdYDZagC3UPDSMAX4eVBAUIg6S6plms GJhcndzTcZvv5o8DdR8WV8OQKtvof232FctIw=
  • List-id: Xen developer discussion <xen-devel.lists.xensource.com>

In this case, the Guest OS is untrusted. We are trying to secure the process using Xen.
Srujan D. Kotikela

On Wed, Jun 15, 2011 at 4:34 AM, George Dunlap <dunlapg@xxxxxxxxx> wrote:
On Tue, Jun 14, 2011 at 5:38 PM, Srujan Kotikela <ksrujandas@xxxxxxxxx> wrote:
> Hi Tim,
> I am trying to implement a secure architecture where a process' (selected)
> memory pages have to be set as read-only. The process will send the virtual
> address of pages required (through a custom hypercall) to be set read-only.
> I need to compute the physical address of the pages and set them read-only.

The process can already ask the operating system to do that.  Why does
the hypervisor need to be involved?


Xen-devel mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.