WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] /sys/hypervisor/uuid

from [Keir Fraser] [Permanent Link][Original]
To: Markus Armbruster <armbru@xxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] /sys/hypervisor/uuid
From: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date: Sat, 20 May 2006 09:42:13 +0100
Cc: Chris Wright <chrisw@xxxxxxxxxxxx>, Xen devel list <xen-devel@xxxxxxxxxxxxxxxxxxx>, Christian Limpach <chris@xxxxxxxxxxxxx>, Christian.Limpach@xxxxxxxxxxxx
Delivery-date: Sat, 20 May 2006 01:47:27 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <871wuqkk1n.fsf@xxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <87y7wzmeqb.fsf@xxxxxxxxxxxxxxxxx> <a74fd46bb61fffb16ab812859d83d8e8@xxxxxxxxxxxx> <20060519074112.GF2724@xxxxxxxxxxxxxxxxx> <3d8eece20605190243v626b894bp1f5e6f4ff23e56d1@xxxxxxxxxxxxxx> <871wuqkk1n.fsf@xxxxxxxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx 

On 19 May 2006, at 18:21, Markus Armbruster wrote:


                                                   Alternatively, you
could add some code to the xenstore dev driver to only allow read-only
access for non-root users.


Does the dev driver enforce root?  Isn't that policy in the kernel?
It's enforced only by the device file permissions and owner/group right now. 


Is it safe to allow unpriveleged read-only access to *all* of xenstore
in domU?
Not naively, I'm pretty sure. Not because I think that the guest-accessible portions of xenstore contain big secrets, but simply because I don't particularly trust the xenstore dev driver (for example, a process that starts a transaction and never finishes it will prevent save/restore from working). If we allowed a non-root process to execute only XS_READ, I think that would be okay.
I'm personally not against the sysfs solution though, if we agree that seeing your own uuid is useful at all. At least it is small and self-contained and, in the face of VM fork, I can imagine supporting poll/select/sigio on that sysfs file or some other to notify processes when platform/guest details have changed due to virtualisation-specific events. It's maybe possible to support that kind of thing in other ways, but it sounds like a pita to me. 

 -- Keir


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] Unable to start PAE Mini-OS from 0x0, Keir Fraser
Next by Date:  Re: [Xen-devel] Re: [PATCH 1/6][RESEND] xen: Add NUMA support to Xen, Keir Fraser
Previous by Thread:  Re: [Xen-devel] [PATCH] /sys/hypervisor/uuid, Markus Armbruster
Next by Thread:  Re: [Xen-devel] [PATCH] /sys/hypervisor/uuid, Markus Armbruster
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy