xen-devel

[Top] [All Lists]

[Xen-devel] [PATCH] [XEND] Xen-API support for ACM

from [Stefan Berger]

[Permanent Link][Original]

To:	xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
Subject:	[Xen-devel] [PATCH] [XEND] Xen-API support for ACM
From:	Stefan Berger <stefanb@xxxxxxxxxx>
Date:	Fri, 26 Jan 2007 10:56:42 -0500
Cc:	Ewan Mellor <ewan@xxxxxxxxxxxxx>, ronpz@xxxxxxxxxx, sailer@xxxxxxxxxx
Delivery-date:	Fri, 26 Jan 2007 07:54:04 -0800
Envelope-to:	www-data@xxxxxxxxxxxxxxxxxx
List-help:	<mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id:	Xen developer discussion <xen-devel.lists.xensource.com>
List-post:	<mailto:xen-devel@lists.xensource.com>
List-subscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe:	<http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender:	xen-devel-bounces@xxxxxxxxxxxxxxxxxxx

This patch is adding initial Xen-API support for the sHype access
control module so that functionality that can be reached via 'xm'
commands can also be reached using the Xen-API. 

This patch adds a security_label to the VM class, which is to be set
when ACM is enabled. Access control to the block interface is now
enforced in blkif.py and denied if the system's policy does not allow a
VM to access a block interface.

Future patches will extend this part of the Xen-API and lib-xen and
provide (latex) documentation.

The module is designed to also support other policies than ACM when they become 
available.

Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxx>

xend-xspolicy-xapi-main.diff
Description: Text Data

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Xen-devel] [PATCH] [XEND] Xen-API support for ACM, Stefan Berger <= Re: [Xen-devel] [PATCH] [XEND] Xen-API support for ACM, Stefan Berger

Previous by Date:	Re: [Xen-devel] [PATCH] Save disable event flags in guest context, John Levon
Next by Date:	Re: [Xen-devel] better console support, Joe Bonasera
Previous by Thread:	[Xen-devel] [PATCH] Save disable event flags in guest context, john . levon
Next by Thread:	Re: [Xen-devel] [PATCH] [XEND] Xen-API support for ACM, Stefan Berger
Indexes:	[Date] [Thread] [Top] [All Lists]