From: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
To: Olaf Hering <olaf@aepfle.de>
Cc: m.a.young@durham.ac.uk, xen-devel@lists.xen.org
Subject: Re: [PATCH 0/7 v3] tools/hotplug: systemd changes for 4.5
Date: Fri, 19 Dec 2014 14:10:32 -0500 [thread overview]
Message-ID: <20141219191032.GB9213@laptop.dumpdata.com> (raw)
In-Reply-To: <1418988333-5404-1-git-send-email-olaf@aepfle.de>
On Fri, Dec 19, 2014 at 12:25:26PM +0100, Olaf Hering wrote:
> This is a resend of these two series:
> http://lists.xenproject.org/archives/html/xen-devel/2014-12/msg00858.html
> http://lists.xenproject.org/archives/html/xen-devel/2014-12/msg00669.html
>
> New in v3 is a wrapper to run xenstored. See its patch description
> for details.
>
> Patch 2-6 should be applied for 4.5.0.
>
> The first and the last one still has issues with xenstored and
> SELinux. See below. Up to now no solution is known to me.
>
>
> The first patch fixes Arch Linux and does not break anything. As such
> it should be safe to be applied for 4.5.0. SELinux users (who build
> from source) should put their special mount options into fstab. Distro
Could you elaborate what that is? As in what is that 'special mount options'?
> packages will most likely include a proper .service file.
>
>
> The last patch addresses the XENSTORED_TRACE issue. But SELinux will
> most likely still not work.
>
> Possible ways to handle launching xenstored and SELinux:
>
> - do nothing
> pro: - no Xen source changes required
> con: - possible unhappy users who build from source and still have
> SELinux enabled
At this stage I prefer this and just have in the release notes the
work-around documented.
>
> - use newly added wrapper
> pro: - XENSTORED_TRACE boolean is handled
> con: - the wrapper may have the very same issue as the current
> launching with sh -c 'exec xenstored'. But maybe there is a
> way to mark the new wrapper script as "this is the native
> xenstored". Someone familiar with SELinux may be able to
> answer this.
>
> - Use ExecStart=@XENSTORED@
> pro: - socket passing will most likely work
> con: - All options have to be passed in XENSTORED_ARGS, a new variable
> which is not yet mentioned in the sysconfig file.
> - Switching xenstored requires a private copy of
> xenstored.service in /etc/systemd instead of adjusting the
> XENSTORED= variable in the sysconfig file.
>
> - Use ExecStart=/usr/bin/env $XENSTORED
> pro: - $XENSTORED can be set in sysconfig file
> con: - may have the same socket issue as starting via shell
> - XENSTORED_TRACE boolean is not handled
>
>
> I will be offline until 2015-01-07, so any further adjustments to this
> series has to be done by someone else.
>
>
> Good luck!
>
> Olaf
>
>
> Olaf Hering (7):
> tools/hotplug: remove SELinux options from var-lib-xenstored.mount
> tools/hotplug: remove XENSTORED_ROOTDIR from xenstored.service
> tools/hotplug: xendomains.service depends on network
> tools/hotplug: use xencommons as EnvironmentFile in
> xenconsoled.service
> tools/hotplug: use XENCONSOLED_TRACE in xenconsoled.service
> tools/hotplug: remove EnvironmentFile from
> xen-qemu-dom0-disk-backend.service
> tools/hotplug: add wrapper to start xenstored
>
> .gitignore | 1 +
> tools/configure | 3 ++-
> tools/configure.ac | 1 +
> tools/hotplug/Linux/Makefile | 2 ++
> tools/hotplug/Linux/init.d/xencommons.in | 6 ++++--
> tools/hotplug/Linux/systemd/var-lib-xenstored.mount.in | 4 +---
> tools/hotplug/Linux/systemd/xen-qemu-dom0-disk-backend.service.in | 1 -
> tools/hotplug/Linux/systemd/xenconsoled.service.in | 6 +++---
> tools/hotplug/Linux/systemd/xendomains.service.in | 2 ++
> tools/hotplug/Linux/systemd/xenstored.service.in | 6 ++----
> tools/hotplug/Linux/xenstored.sh.in | 6 ++++++
> 11 files changed, 24 insertions(+), 14 deletions(-)
> create mode 100644 tools/hotplug/Linux/xenstored.sh.in
>
next prev parent reply other threads:[~2014-12-19 19:10 UTC|newest]
Thread overview: 58+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-12-19 11:25 [PATCH 0/7 v3] tools/hotplug: systemd changes for 4.5 Olaf Hering
2014-12-19 11:25 ` [PATCH 1/7] tools/hotplug: remove SELinux options from var-lib-xenstored.mount Olaf Hering
2015-01-06 11:27 ` Ian Campbell
2015-01-07 9:23 ` Olaf Hering
2015-01-07 9:31 ` Ian Campbell
2015-01-07 14:53 ` Konrad Rzeszutek Wilk
2015-01-06 14:48 ` Ian Jackson
2015-09-10 13:52 ` George Dunlap
2015-09-10 14:13 ` M A Young
2015-09-10 14:17 ` George Dunlap
2015-09-11 6:31 ` Olaf Hering
2015-09-14 16:30 ` George Dunlap
2015-09-14 18:33 ` Olaf Hering
2015-09-15 8:55 ` George Dunlap
2015-09-15 12:48 ` Olaf Hering
2015-09-15 12:55 ` George Dunlap
2015-09-15 13:58 ` Konrad Rzeszutek Wilk
2015-09-15 14:01 ` George Dunlap
2015-09-15 15:12 ` Konrad Rzeszutek Wilk
2015-09-15 15:52 ` George Dunlap
2015-09-15 13:57 ` Konrad Rzeszutek Wilk
2014-12-19 11:25 ` [PATCH 2/7] tools/hotplug: remove XENSTORED_ROOTDIR from xenstored.service Olaf Hering
2014-12-19 11:25 ` [PATCH 3/7] tools/hotplug: xendomains.service depends on network Olaf Hering
2014-12-19 11:25 ` [PATCH 4/7] tools/hotplug: use xencommons as EnvironmentFile in xenconsoled.service Olaf Hering
2015-01-06 11:29 ` Ian Campbell
2015-01-06 14:45 ` Ian Jackson
2014-12-19 11:25 ` [PATCH 5/7] tools/hotplug: use XENCONSOLED_TRACE " Olaf Hering
2015-01-06 11:30 ` Ian Campbell
2015-01-06 15:26 ` Konrad Rzeszutek Wilk
2015-01-06 14:46 ` Ian Jackson
2014-12-19 11:25 ` [PATCH 6/7] tools/hotplug: remove EnvironmentFile from xen-qemu-dom0-disk-backend.service Olaf Hering
2015-01-06 11:33 ` Ian Campbell
2015-01-06 14:50 ` Ian Jackson
2014-12-19 11:25 ` [PATCH 7/7] tools/hotplug: add wrapper to start xenstored Olaf Hering
2015-01-06 11:41 ` Ian Campbell
2015-01-07 9:40 ` Olaf Hering
2015-01-07 15:27 ` Ian Jackson
2015-01-07 15:42 ` Konrad Rzeszutek Wilk
2015-09-10 14:19 ` George Dunlap
2015-09-10 14:53 ` Wei Liu
2015-09-10 15:01 ` M A Young
2015-09-10 15:10 ` Wei Liu
2015-09-10 15:11 ` George Dunlap
2015-09-10 16:01 ` Ian Jackson
2015-09-11 6:42 ` Olaf Hering
2015-01-06 14:58 ` Ian Jackson
2015-01-07 9:49 ` Olaf Hering
2015-01-07 14:55 ` Konrad Rzeszutek Wilk
2014-12-19 19:10 ` Konrad Rzeszutek Wilk [this message]
2014-12-22 8:06 ` [PATCH 0/7 v3] tools/hotplug: systemd changes for 4.5 Olaf Hering
2014-12-31 15:31 ` Konrad Rzeszutek Wilk
2015-01-05 21:22 ` Konrad Rzeszutek Wilk
2015-01-06 10:05 ` Ian Campbell
2015-01-06 15:00 ` Ian Jackson
2015-01-06 15:19 ` Konrad Rzeszutek Wilk
2015-01-07 9:53 ` Olaf Hering
2015-01-07 14:56 ` Konrad Rzeszutek Wilk
2015-01-07 15:03 ` Olaf Hering
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20141219191032.GB9213@laptop.dumpdata.com \
--to=konrad.wilk@oracle.com \
--cc=m.a.young@durham.ac.uk \
--cc=olaf@aepfle.de \
--cc=xen-devel@lists.xen.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.