WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code

from [George S. Coker, II] [Permanent Link][Original]
To: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl
From: "George S. Coker, II" <gscoker@xxxxxxxxxxxxxx>
Date: Mon, 23 Apr 2007 12:33:18 -0400
Cc: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>, Stefan Berger <stefanb@xxxxxxxxxx>
Delivery-date: Mon, 23 Apr 2007 09:32:19 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <C250F259.61BE%Keir.Fraser@xxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <C250F259.61BE%Keir.Fraser@xxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 
On Sun, 2007-04-22 at 11:07 +0100, Keir Fraser wrote:
> I think that relying on domctl wrapper functions to do necessary label
> bookkeeping on domain create/destroy is making things more complicated than
> they need to be. Wrapper functions are obviously the right answer for most
> ACM functions (since they are allow/deny checks, external to the core logic
> of the operation being checked), but in the case of domain create/destroy
> ACM is more part of the process.
> 
> So, how about having functions: domain_acm_create() and
> domain_acm_destroy()? The former would be called from domain_create(), the
> latter from the error path of domain_create() and from domain_destroy().
> 
> You can then have appropriate critical regions *within* those functions (not
> across them) that you synchronise against when relabelling the world. And
> you shouldn't then need to modify do_domctl() at all?
> 

I'll chime in here, although my response applies to later parts of the
thread.

XSM provides hooks in domain_create and domain_destroy so that modules
can do these kinds of operations.  There are some side issues that need
to be considered in the creation of these hooks, such as when
domain_create is first called and when any security module is
initialized.  In my experience it has been straightforward to factor the
existing sHype(ACM) module to take advantage of these additional
hooks.  

A nice side effect (for sHype(ACM)) of the domain_destroy hook is we can
clean up the destroy domain operation in do_domctl by removing the local
ssid variable as well ensure that the security object is destroyed/freed
last.

I'll be posting some updated and cleaned up XSM patches later
today/tomorrow.  I realize many may be distracted with the 3.0.5 release
candidate, but this should help me get XSM into good shape for when
3.0.6 opens up for patches.

George


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Xen-devel] Xend exception at end of save/migration, Graham, Simon
Next by Date:  RE: [Xen-devel] Xen 3.0.5 Second Release Candidate, Cihula, Joseph
Previous by Thread:  Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl, Keir Fraser
Next by Thread:  [Xen-devel] Re: Xen Frequency scaling - not working, Keir Fraser
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy