WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-users

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [Xen-users] Is using w! safe to share data between domains?

from [Ian Pratt] [Permanent Link][Original]
To: "John A. Sullivan III" <jsullivan@xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Xen-users] Is using w! safe to share data between domains?
From: "Ian Pratt" <m+Ian.Pratt@xxxxxxxxxxxx>
Date: Thu, 19 May 2005 20:19:06 +0100
Cc: ian.pratt@xxxxxxxxxxxx, Mark Williamson <mark.williamson@xxxxxxxxxxxx>, xen-users@xxxxxxxxxxxxxxxxxxx
Delivery-date: Thu, 19 May 2005 19:18:45 +0000
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AcVcplnrB+nq3NvTSeKFkWNMJWiRvAAAK0Jw
Thread-topic: [Xen-users] Is using w! safe to share data between domains? 
 
> Hmmm . . . well, I really would prefer to do that although I 
> was suspicious of the race condition someone else pointed 
> out.  The data exchange is bidirectional.  That's why, at 
> some point, multiple devices must mount it rw though none at 
> the same time unless accidentally.
> 
> Should I assume that if one system was always rw and the 
> other ro, that I could get away with it but, if I must change 
> back and forth, I asking for trouble?

Why not use two partitions, one domain 'owning' each?

Alternatively, if you NTP sync the machines, you could co-ordinate when
they were going to mount the partition. This is a higher risk than the
alternative, though.

If you've only got one writer, the only risk is the reader's kernel
getting confused, but if you've just done a fresh mount of the file
system, read the data out and then unmount I suspect you'll get away
with it in practice.

Ian

 
> Thanks very much - and by the way, thanks for such a great 
> product - John
> 
> On Thu, 2005-05-19 at 18:47 +0100, Ian Pratt wrote:
> > I suspect that in reality you'll get away with periodically 
> mounting 
> > the partition read-only, copying out the data you want, 
> then unmounting it.
> > You can leave it mounted rw in the other domain the whole time.
> > 
> > Ian
> > 
> > > On Thu, 2005-05-19 at 16:21 +0100, Mark Williamson wrote:
> > > > On Thursday 19 May 2005 10:37, John A. Sullivan III wrote:
> > > > > I have a slightly unusual situation where I need to pass
> > > data from
> > > > > one domain to another but, for security reasons, one of
> > > the domains
> > > > > will not be on the network.  I would like to pass the 
> data via a 
> > > > > shared disk partition.  I would like to know if what I
> > > have done is safe.
> > > > 
> > > > Have you considered giving the networkless domain a vif but 
> > > > firewalling it off from everything you don't trust?  Having 
> > > > network available would make this kind of sharing much easier,
> > > since you could
> > > > use NFS (purely networked), GFS or OCFS2 (both disk-based
> > > but require a network component to work).
> > > > 
> > > <snip>
> > > Yes, that was the second choice.  We are trying to protect our 
> > > Certificate Authorities as much as possible.  Thanks to 
> everyone for 
> > > their help - John
> > > --
> > > John A. Sullivan III
> > > Open Source Development Corporation
> > > +1 207-985-7880
> > > jsullivan@xxxxxxxxxxxxxxxxxxx
> > > 
> > > If you would like to participate in the development of an open 
> > > source enterprise class network security management 
> system, please 
> > > visit http://iscs.sourceforge.net
> > > 
> > > 
> > > _______________________________________________
> > > Xen-users mailing list
> > > Xen-users@xxxxxxxxxxxxxxxxxxx
> > > http://lists.xensource.com/xen-users
> > > 
> --
> John A. Sullivan III
> Open Source Development Corporation
> +1 207-985-7880
> jsullivan@xxxxxxxxxxxxxxxxxxx
> 
> Financially sustainable open source development 
> http://www.opensourcedevel.com
> 
> 

_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Xen-users] Is using w! safe to share data between domains?, John A. Sullivan III
Next by Date:  [Xen-users] Re: Re: Cross-Domain Networking Problems, Ralf Lübben
Previous by Thread:  RE: [Xen-users] Is using w! safe to share data between domains?, John A. Sullivan III
Next by Thread:  [Xen-users] is there a way to have a read-only "skeleton"?, Jack Downes
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy