WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 		  
Home Products Support Community News
 
   
 

xen-devel

[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code

from [Keir Fraser] [Permanent Link][Original]
To: Stefan Berger <stefanb@xxxxxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxx>
Subject: Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl
From: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Date: Sun, 22 Apr 2007 11:07:05 +0100
Delivery-date: Sun, 22 Apr 2007 03:04:18 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <1177196533.5573.2.camel@xxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
Thread-index: AceExfqIOSY4wvC5EduDnwAWy6hiGQ==
Thread-topic: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl
User-agent: Microsoft-Entourage/11.3.3.061214 
I think that relying on domctl wrapper functions to do necessary label
bookkeeping on domain create/destroy is making things more complicated than
they need to be. Wrapper functions are obviously the right answer for most
ACM functions (since they are allow/deny checks, external to the core logic
of the operation being checked), but in the case of domain create/destroy
ACM is more part of the process.

So, how about having functions: domain_acm_create() and
domain_acm_destroy()? The former would be called from domain_create(), the
latter from the error path of domain_create() and from domain_destroy().

You can then have appropriate critical regions *within* those functions (not
across them) that you synchronise against when relabelling the world. And
you shouldn't then need to modify do_domctl() at all?

 -- Keir

On 22/4/07 00:02, "Stefan Berger" <stefanb@xxxxxxxxxx> wrote:

> This patch restructures the ACM-related code in the do_domctl() function
> so that the lock to the policy can be fetched in the individual
> operations, i.e., XEN_DOMCTL_createdomain, and the pair of locking
> functions acm_rlock_policy()/acm_runlock_policy() don't take the
> function parameter anymore.
> 
> Sign-off-by: Stefan Berger <stefanb@xxxxxxxxxx>
> 
> _______________________________________________
> Xen-devel mailing list
> Xen-devel@xxxxxxxxxxxxxxxxxxx
> http://lists.xensource.com/xen-devel



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Xen-devel] 3.0.4: Soft lockup in netfront in SMP build, Keir Fraser
Next by Date:  [Xen-devel] Re: Xen scheduler, Mike D. Day
Previous by Thread:  [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl, Stefan Berger
Next by Thread:  Re: [Xen-devel] [PATCH] [XEN] [ACM] [2/2] Restructuring ACM-related code in do_domctl, Stefan Berger
Indexes:  [Date] [Thread] [Top] [All Lists]
 
   

Copyright , Citrix Systems Inc. All rights reserved. Legal and Privacy