On Tue, Sep 30, 2008 at 03:48:29PM +0100, Keir Fraser wrote:
> On 30/9/08 15:43, "John Levon" <levon@xxxxxxxxxxxxxxxxx> wrote:
>
> > On Tue, Sep 30, 2008 at 04:24:43PM +0200, Pascal Bouchareine wrote:
> >
> >> This patch moves some dom0 variables and backend device
> >> configuration from frontend directories to
> >> /local/domain/<backdomid>/backend or /vm.
> >
> > What is the point of this? These paths, however wrong they might be, are
> > API, surely.
>
> Which guaranteed API would that be? These paths are private to the toolstack
> implementation. Perhaps the only exception is the
Precisely the problem, there's absolutely no idea or indication what is
and isn't private. Thus you get libvirt looking in places it maybe
shouldn't, but how are they supposed to know?
I'm pretty sure this patch breaks libvirt again.
> xenconsoled-to-console-client xenstore path, but that is the one that most
> urgently needs to change, since we can't trust domUs not to mess with the
> tty path, for example.
If it's a security fix (and I see the issue), it needs to be much more
public than this patch was, and of course backported to at least 3.2
ASAP.
regards
john
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel
|
Home