Xen project Mailing List

Re: [Xen-devel] [PATCH 23/24] xenstored: add --priv-domid parameter

To: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>

From: Ian Campbell <Ian.Campbell@xxxxxxxxxx>

Date: Fri, 27 Jan 2012 10:38:18 +0000

Cc: "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>

Delivery-date: Fri, 27 Jan 2012 10:38:40 +0000

List-id: Xen developer discussion <xen-devel.lists.xensource.com>

On Thu, 2012-01-26 at 19:45 +0000, Daniel De Graaf wrote: > This parameter identifies an alternative service domain which has > superuser access to the xenstore database, which is currently required > to set up a new domain's xenstore entries. > > Signed-off-by: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx> Acked-by: Ian Campbell <ian.campbell@xxxxxxxxxx> > --- > tools/xenstore/xenstored_core.c | 5 +++++ > tools/xenstore/xenstored_core.h | 1 + > tools/xenstore/xenstored_domain.c | 2 +- > 3 files changed, 7 insertions(+), 1 deletions(-) > > diff --git a/tools/xenstore/xenstored_core.c b/tools/xenstore/xenstored_core.c > index f254947..2894f1b 100644 > --- a/tools/xenstore/xenstored_core.c > +++ b/tools/xenstore/xenstored_core.c > @@ -1825,6 +1825,7 @@ static struct option options[] = { > { "event", 1, NULL, 'e' }, > { "help", 0, NULL, 'H' }, > { "no-fork", 0, NULL, 'N' }, > + { "priv-domid", 1, NULL, 'p' }, > { "output-pid", 0, NULL, 'P' }, > { "entry-size", 1, NULL, 'S' }, > { "trace-file", 1, NULL, 'T' }, > @@ -1838,6 +1839,7 @@ static struct option options[] = { > > extern void dump_conn(struct connection *conn); > int dom0_event = 0; > +int priv_domid = 0; > > int main(int argc, char *argv[]) > { > @@ -1903,6 +1905,9 @@ int main(int argc, char *argv[]) > case 'e': > dom0_event = strtol(optarg, NULL, 10); > break; > + case 'p': > + priv_domid = strtol(optarg, NULL, 10); > + break; > } > } > if (optind != argc) > diff --git a/tools/xenstore/xenstored_core.h b/tools/xenstore/xenstored_core.h > index d3040ba..03e2e48 100644 > --- a/tools/xenstore/xenstored_core.h > +++ b/tools/xenstore/xenstored_core.h > @@ -169,6 +169,7 @@ void dtrace_io(const struct connection *conn, const > struct buffered_data *data, > > extern int event_fd; > extern int dom0_event; > +extern int priv_domid; > > /* Map the kernel's xenstore page. */ > void *xenbus_map(void); > diff --git a/tools/xenstore/xenstored_domain.c > b/tools/xenstore/xenstored_domain.c > index 22fe126b..151e088 100644 > --- a/tools/xenstore/xenstored_domain.c > +++ b/tools/xenstore/xenstored_domain.c > @@ -263,7 +263,7 @@ bool domain_can_read(struct connection *conn) > > bool domain_is_unprivileged(struct connection *conn) > { > - return (conn && conn->domain && conn->domain->domid != 0); > + return (conn && conn->domain && conn->domain->domid != 0 && > conn->domain->domid != priv_domid); > } > > bool domain_can_write(struct connection *conn) _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.