From: Mike Wray <mike.wray@hpl.hp.com>
To: Luke Kenneth Casson Leighton <lkcl@lkcl.net>
Cc: xen-devel@lists.sourceforge.net
Subject: Re: protecting xen startup
Date: Tue, 23 Nov 2004 18:07:28 +0000 [thread overview]
Message-ID: <41A37C60.7000507@hpl.hp.com> (raw)
In-Reply-To: <20041123170546.GB6250@lkcl.net>
Luke Kenneth Casson Leighton wrote:
> hi,
>
> i notice that there's a management interface on port 8000.
>
> i seek to protect this interface such that nothing but a trusted program
> (think selinux) may run, manage, start up or shut down xen oses.
>
> so: where can i find out information about the structure of the
> xen management interface?
>
> is the port 8000 stuff just providing a web server (/etc/init.d/xend)
> front-end to some extra system calls?
What lives behind port 8000 is xend. This is the management daemon for xen.
It presents its interface over HTTP and implements it using low-level calls
into the xen hypervisor via ioctls. There is no system call
interface that corresponds to the xend api.
>
> is the port 8000 stuff actually running in the xen boot-up stuff?
Xen boots the hypervisor, then domain-0.
Xend runs in domain-0 and is the normal way that all other domains
get started.
> if it's some extra system calls that's very good because it will be
> possible to add selinux security hooks to protect each system call.
You should be able to use selinux rules to specify what gets to talk to xend at
port 8000. You'd need to enable LSM and selinux in the domain-0 kernel, but
otherwise all you should need to do is configure selinux appropriately.
> ta,
>
> l.
>
Hope this helps,
Mike
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://productguide.itmanagersjournal.com/
next prev parent reply other threads:[~2004-11-23 18:07 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-11-23 17:05 protecting xen startup Luke Kenneth Casson Leighton
2004-11-23 18:07 ` Mike Wray [this message]
2004-11-23 21:03 ` Luke Kenneth Casson Leighton
2004-11-23 18:07 ` Mark Williamson
2004-11-23 20:51 ` Luke Kenneth Casson Leighton
2004-11-23 21:03 ` Ian Pratt
2004-11-23 21:52 ` Luke Kenneth Casson Leighton
2004-11-23 22:00 ` Jan Kundrát
2004-11-24 0:21 ` Luke Kenneth Casson Leighton
2004-11-24 8:17 ` Mark Williamson
2004-11-24 10:39 ` Luke Kenneth Casson Leighton
2004-11-23 22:49 ` Mark Williamson
2004-11-24 0:18 ` [Xen-devel] " Luke Kenneth Casson Leighton
2004-11-24 0:18 ` Luke Kenneth Casson Leighton
2004-11-24 8:27 ` Mark Williamson
-- strict thread matches above, loose matches on Subject: below --
2004-11-23 17:33 Charles Coffing
2004-11-23 17:58 ` Mike Wray
2004-11-23 23:58 Neugebauer, Rolf
2004-11-24 10:53 ` Luke Kenneth Casson Leighton
2004-11-24 11:55 ` Mark Williamson
2004-11-24 11:48 Neugebauer, Rolf
2004-11-24 15:24 ` Luke Kenneth Casson Leighton
2004-11-24 20:24 ` Luke Kenneth Casson Leighton
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=41A37C60.7000507@hpl.hp.com \
--to=mike.wray@hpl.hp.com \
--cc=lkcl@lkcl.net \
--cc=xen-devel@lists.sourceforge.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.