[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] RAM security

To: Jan Beulich <JBeulich@xxxxxxxxxx>, Xen-devel@xxxxxxxxxxxxxxxxxxx
From: Jonathan Tripathy <jonnyt@xxxxxxxxxxx>
Date: Mon, 06 Dec 2010 17:17:28 +0000
Cc:
Delivery-date: Mon, 06 Dec 2010 09:18:55 -0800
List-id: Xen developer discussion <xen-devel.lists.xensource.com>


On 06/12/10 17:12, Jonathan Tripathy wrote:

3) If the physical server was shutdown (e.g. plug pulled), I'm guessing
this will presetn a problem?
Xen scrubs all memory during boot, unless told not to via a bootparameter.
Now this bit of code makes me happy!
Just wondering, if Xen scrubs all memory during boot, why isbooting theHypervisor so fast? My machine has 8GB of RAM and starts nice andsnappy..
It probably takes just a couple of seconds to scrub 8GB.
Plus it doesn't scrub the memory assigned to Dom0.
Doesn't this mean that if Dom0 releases some memory back to Xen, thenXen gives it to another domain, data leakage could occur?
Would one way to prevent this be to disable ballooning?

Silly me, Dom0 should scrub the RAM before releasing it back to Xen, asmentioned in previous post!


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

References:
- Re: [Xen-devel] RAM security
  - From: Jonathan Tripathy
- Re: [Xen-devel] RAM security
  - From: Keir Fraser
- Re: [Xen-devel] RAM security
  - From: Jan Beulich
- Re: [Xen-devel] RAM security
  - From: Jonathan Tripathy

Prev by Date: Re: [Xen-devel] RAM security
Next by Date: Re: [Xen-devel] Is there any mechanism in XEN can use to limit the memory bandwidth of each domain?
Previous by thread: Re: [Xen-devel] RAM security
Next by thread: [Xen-devel] Accessing HW from Virtual machine
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.