[Xen-devel] [PATCH] [XEND] Xen-API support for ACM

This patch is adding initial Xen-API support for the sHype access
control module so that functionality that can be reached via 'xm'
commands can also be reached using the Xen-API. 

This patch adds a security_label to the VM class, which is to be set
when ACM is enabled. Access control to the block interface is now
enforced in blkif.py and denied if the system's policy does not allow a
VM to access a block interface.

Future patches will extend this part of the Xen-API and lib-xen and
provide (latex) documentation.

The module is designed to also support other policies than ACM when they become 
available.

Signed-off-by: Stefan Berger <stefanb@xxxxxxxxxx>

xend-xspolicy-xapi-main.diff
Description: Text Data

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-devel

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

Re: [Xen-devel] [PATCH] Save disable event flags in guest context, John Levon

Next by Date:

Re: [Xen-devel] better console support, Joe Bonasera

Previous by Thread:

[Xen-devel] [PATCH] Save disable event flags in guest context, john . levon

Next by Thread:

Re: [Xen-devel] [PATCH] [XEND] Xen-API support for ACM, Stefan Berger

Indexes:

[Date] [Thread] [Top] [All Lists]