[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves

To: Vincent Hanquez <vincent.hanquez@xxxxxxxxxxxxx>
From: Olaf Hering <olaf@xxxxxxxxx>
Date: Tue, 9 Aug 2011 12:49:56 +0200
Cc: "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Tue, 09 Aug 2011 03:51:45 -0700
List-id: Xen developer discussion <xen-devel.lists.xensource.com>

On Tue, Aug 09, Vincent Hanquez wrote:

> What about security wise ?

Its not about security, just the usual UNIX gun->foot thing.

> Guest userspace suddenly becomes able to do this operation (and DoS themself)
> where they used to be limited to normal read/write/.. operations.

The guest userspace does most likely not talk to xenstored directly.
Whatever acts as the proxy could filter the XS_INTRODUCE command.

> Also you're changing the C xenstored behavior without changing
> the OCaml one.

I better leave that to the maintainers of that code.

Olaf

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

References:
- [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
  - From: Olaf Hering
- Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
  - From: Vincent Hanquez

Prev by Date: Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
Next by Date: Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
Previous by thread: Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
Next by thread: Re: [Xen-devel] [PATCH] xenstored: allow guests to reintroduce themselves
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.