[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops

To: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>, "White, Edmund H" <edmund.h.white@xxxxxxxxx>, "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>
From: "Sahita, Ravi" <ravi.sahita@xxxxxxxxx>
Date: Mon, 29 Jun 2015 17:55:08 +0000
Accept-language: en-US
Cc: Wei Liu <wei.liu2@xxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxxxxx>, Tim Deegan <tim@xxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, "tlengyel@xxxxxxxxxxx" <tlengyel@xxxxxxxxxxx>
Delivery-date: Mon, 29 Jun 2015 17:55:15 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>
Thread-index: AQHQspRgCBlrTX9KFUKBZy4Z7R5uJZ3Dw/aA
Thread-topic: [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops

On 06/26/2015 03:35 PM, Ed White wrote:
> On 06/26/2015 12:24 PM, Daniel De Graaf wrote:
>> On 06/22/2015 02:56 PM, Ed White wrote:
>>> From: Ravi Sahita <ravi.sahita@xxxxxxxxx>
>>>
>>> Signed-off-by: Ravi Sahita <ravi.sahita@xxxxxxxxx>
>>
>> One comment, below.
>>
>> [...]
>>> diff --git a/tools/flask/policy/policy/modules/xen/xen.if 
>>> b/tools/flask/policy/policy/modules/xen/xen.if
>>> index f4cde11..c95109f 100644
>>> --- a/tools/flask/policy/policy/modules/xen/xen.if
>>> +++ b/tools/flask/policy/policy/modules/xen/xen.if
>>> @@ -8,7 +8,7 @@
>>>    define(`declare_domain_common', `
>>>        allow $1 $2:grant { query setup };
>>>        allow $1 $2:mmu { adjust physmap map_read map_write stat pinpage 
>>> updatemp mmuext_op };
>>> -    allow $1 $2:hvm { getparam setparam };
>>> +    allow $1 $2:hvm { getparam setparam altp2mhvm altp2mhvm_op };
>>>        allow $1 $2:domain2 get_vnumainfo;
>>>    ')
>>
>> This allows any domain to enable altp2m on itself; I think you meant 
>> to only allow altp2mhvm_op here, requiring a privileged domain to 
>> first enable the feature on a domain before anyone can use it.
>>
>
> We certainly don't want to unconditionally disallow that. We want the 
> policy to offer the ability to choose whether it's allowed or not.
> Does the patch do that?

Remove altp2mhvm from the above line, leaving only altp2mhvm_op here.  The 
other line added to xen.if should still contain both. This makes the FLASK 
policy match the no-XSM case, which I assume is what you've tested.
--
Daniel De Graaf
National Security Agency

Ravi> Thanks Daniel - we will make that change - We have tested both no-XSM and 
with XSM for our Windows HVM domain tests.



_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] [PATCH v2 00/12] Alternate p2m: support multiple copies of host p2m
  - From: Ed White
- [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops
  - From: Ed White
- Re: [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops
  - From: Daniel De Graaf
- Re: [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops
  - From: Ed White
- Re: [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops
  - From: Daniel De Graaf

Prev by Date: Re: [Xen-devel] [PATCH v3 1/6] libxl: allow /local/domain/$LIBXL_TOOLSTACK_DOMID/device-model/$DOMID to be written by $DOMID
Next by Date: Re: [Xen-devel] [PATCH v3 2/6] libxl: do not add a vkb backend to hvm guests
Previous by thread: Re: [Xen-devel] [PATCH v2 12/12] x86/altp2m: XSM hooks for altp2m HVM ops
Next by thread: [Xen-devel] [PATCH v2 10/12] x86/altp2m: define and implement alternate p2m HVMOP types.
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.