* Is it possible to access XenStore remotely? @ 2009-08-20 2:24 weiming 2009-08-20 9:24 ` Vincent Hanquez 0 siblings, 1 reply; 8+ messages in thread From: weiming @ 2009-08-20 2:24 UTC (permalink / raw) To: xen-api, xen-devel [-- Attachment #1.1: Type: text/plain, Size: 173 bytes --] Hi, Is it possible to read/write the xenstore from another physical machine? I know it uses Unix socket. So it looks hard to access it remotely, isn't it? Thanks, Zephyr [-- Attachment #1.2: Type: text/html, Size: 206 bytes --] [-- Attachment #2: Type: text/plain, Size: 138 bytes --] _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel ^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Is it possible to access XenStore remotely? 2009-08-20 2:24 Is it possible to access XenStore remotely? weiming @ 2009-08-20 9:24 ` Vincent Hanquez 2009-08-20 14:00 ` weiming [not found] ` <m2n.s.1Me8DV-002Rcc@chiark.greenend.org.uk> 0 siblings, 2 replies; 8+ messages in thread From: Vincent Hanquez @ 2009-08-20 9:24 UTC (permalink / raw) To: weiming; +Cc: xen-devel@lists.xensource.com, xen-api@lists.xensource.com weiming wrote: > Hi, > > Is it possible to read/write the xenstore from another physical machine? > > I know it uses Unix socket. So it looks hard to access it remotely, > isn't it? Hi weiming, whilst it's not possible at the moment and certainly a bad idea security wise, make xenstored listen on a tcp socket along with the unix socket is very easy. cheers, -- Vincent ^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Is it possible to access XenStore remotely? 2009-08-20 9:24 ` Vincent Hanquez @ 2009-08-20 14:00 ` weiming 2009-08-24 13:03 ` Tim Post [not found] ` <m2n.s.1Me8DV-002Rcc@chiark.greenend.org.uk> 1 sibling, 1 reply; 8+ messages in thread From: weiming @ 2009-08-20 14:00 UTC (permalink / raw) To: Vincent Hanquez Cc: xen-devel@lists.xensource.com, xen-api@lists.xensource.com [-- Attachment #1.1: Type: text/plain, Size: 688 bytes --] Hi VIncent, Yes, I'm considering adding a TCP socket for xenstored. Since xen apis can be called remotely, there's no reason to prevent accessing xenstore in the same way. thanks, Weiming On Thu, Aug 20, 2009 at 5:24 AM, Vincent Hanquez < vincent.hanquez@eu.citrix.com> wrote: > weiming wrote: > >> Hi, >> >> Is it possible to read/write the xenstore from another physical machine? >> >> I know it uses Unix socket. So it looks hard to access it remotely, isn't >> it? >> > Hi weiming, > > whilst it's not possible at the moment and certainly a bad idea security > wise, make xenstored listen on a tcp socket along with the unix socket is > very easy. > > cheers, > -- > Vincent > > [-- Attachment #1.2: Type: text/html, Size: 1247 bytes --] [-- Attachment #2: Type: text/plain, Size: 138 bytes --] _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel ^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Is it possible to access XenStore remotely? 2009-08-20 14:00 ` weiming @ 2009-08-24 13:03 ` Tim Post [not found] ` <1251118999.5532.84.camel-bi+AKbBUZKY6gyzm1THtWbp2dZbC/Bob@public.gmane.org> 0 siblings, 1 reply; 8+ messages in thread From: Tim Post @ 2009-08-24 13:03 UTC (permalink / raw) To: weiming Cc: xen-devel@lists.xensource.com, Vincent Hanquez, xen-api@lists.xensource.com Hi, On Thu, 2009-08-20 at 10:00 -0400, weiming wrote: > Hi VIncent, > > Yes, I'm considering adding a TCP socket for xenstored. > > Since xen apis can be called remotely, there's no reason to prevent > accessing xenstore in the same way. We did this when working on an experiment to use Xen on a single system image. Our implementation utilized a private back-end LAN which was not exposed to dom-u's that faced the public, so no authentication mechanism was needed. We needed to set up remote watches to facilitate a sort of 'cluster wide upstart for xen'. I would warn you, XenStore is fragile and often fickle, I've crashed it many times within a guest while working on split drivers for various character devices. If you expose it via sockets, without having the API as a buffer to take most 'brute force' abuse, be sure to code very defensively and utilize iptables to restrict access. While xend can be re-started , xenstored can not. Yes, API's can be called remotely, however some diligence prevails before the API actually talks to xenstore. Cheers, --Tim > > thanks, > Weiming > > On Thu, Aug 20, 2009 at 5:24 AM, Vincent Hanquez > <vincent.hanquez@eu.citrix.com> wrote: > > weiming wrote: > Hi, > > Is it possible to read/write the xenstore from another > physical machine? > > I know it uses Unix socket. So it looks hard to access > it remotely, isn't it? > Hi weiming, > > whilst it's not possible at the moment and certainly a bad > idea security wise, make xenstored listen on a tcp socket > along with the unix socket is very easy. > > cheers, > -- > Vincent > > > _______________________________________________ > Xen-devel mailing list > Xen-devel@lists.xensource.com > http://lists.xensource.com/xen-devel -- Monkey + Typewriter = Echoreply ( http://echoreply.us ) ^ permalink raw reply [flat|nested] 8+ messages in thread
[parent not found: <1251118999.5532.84.camel-bi+AKbBUZKY6gyzm1THtWbp2dZbC/Bob@public.gmane.org>]
* Re: [Xen-devel] Is it possible to access XenStore remotely? [not found] ` <1251118999.5532.84.camel-bi+AKbBUZKY6gyzm1THtWbp2dZbC/Bob@public.gmane.org> @ 2009-08-24 16:05 ` Ian Jackson [not found] ` <19090.47695.114710.46450-msK/Ju9w1zmnROeE8kUsYhEHtJm+Wo+I@public.gmane.org> 2009-08-25 6:38 ` Tim Post 0 siblings, 2 replies; 8+ messages in thread From: Ian Jackson @ 2009-08-24 16:05 UTC (permalink / raw) To: echo-Czp0qWhDxZq1SnRDb8oMDQ Cc: xen-devel-GuqFBffKawuULHF6PoxzQEEOCMrvLtNR@public.gmane.org, Vincent Hanquez, xen-api-GuqFBffKawuULHF6PoxzQEEOCMrvLtNR@public.gmane.org Tim Post writes ("Re: [Xen-devel] Is it possible to access XenStore remotely?"): > I would warn you, XenStore is fragile and often fickle, I've crashed it > many times within a guest while working on split drivers for various > character devices. If xenstored can be crashed then we should fix it. Can you remember any of the things which caused it to fall over ? Ian. ^ permalink raw reply [flat|nested] 8+ messages in thread
[parent not found: <19090.47695.114710.46450-msK/Ju9w1zmnROeE8kUsYhEHtJm+Wo+I@public.gmane.org>]
* Re: [Xen-devel] Is it possible to access XenStore remotely? [not found] ` <19090.47695.114710.46450-msK/Ju9w1zmnROeE8kUsYhEHtJm+Wo+I@public.gmane.org> @ 2009-08-24 16:13 ` Vincent Hanquez 0 siblings, 0 replies; 8+ messages in thread From: Vincent Hanquez @ 2009-08-24 16:13 UTC (permalink / raw) To: Ian Jackson Cc: xen-devel-GuqFBffKawuULHF6PoxzQEEOCMrvLtNR@public.gmane.org, echo-Czp0qWhDxZq1SnRDb8oMDQ@public.gmane.org, xen-api-GuqFBffKawuULHF6PoxzQEEOCMrvLtNR@public.gmane.org Ian Jackson wrote: > Tim Post writes ("Re: [Xen-devel] Is it possible to access XenStore remotely?"): > >> I would warn you, XenStore is fragile and often fickle, I've crashed it >> many times within a guest while working on split drivers for various >> character devices. >> > > If xenstored can be crashed then we should fix it. Can you remember > any of the things which caused it to fall over ? > or we could just install the ocaml implementation by default. it has already proven to be a lot better security wise. (it's still interesting to know what caused the crash, so we can probably add that to some kind of harness) -- Vincent ^ permalink raw reply [flat|nested] 8+ messages in thread
* Re: Is it possible to access XenStore remotely? 2009-08-24 16:05 ` [Xen-devel] " Ian Jackson [not found] ` <19090.47695.114710.46450-msK/Ju9w1zmnROeE8kUsYhEHtJm+Wo+I@public.gmane.org> @ 2009-08-25 6:38 ` Tim Post 1 sibling, 0 replies; 8+ messages in thread From: Tim Post @ 2009-08-25 6:38 UTC (permalink / raw) To: Ian Jackson Cc: weiming, xen-devel@lists.xensource.com, Vincent Hanquez, xen-api@lists.xensource.com Ian, On Mon, 2009-08-24 at 17:05 +0100, Ian Jackson wrote: > Tim Post writes ("Re: [Xen-devel] Is it possible to access XenStore remotely?"): > > I would warn you, XenStore is fragile and often fickle, I've crashed it > > many times within a guest while working on split drivers for various > > character devices. > > If xenstored can be crashed then we should fix it. Can you remember > any of the things which caused it to fall over ? Mostly, it was run away writers caught in a brain dead loop. It was not difficult to DoS the store from within a guest accidentally or deliberately. I also remember using watches on a single key that changed frequently without using xs_read_watch() since I already knew what fired, that caused a total crash of xenstored. I've also had xs_transaction_end() return -EAGAIN frequently on busy systems. The ocaml version of xenstored is much more resilient to abuse, be it accidental or deliberate. Cheers, --Tim -- Monkey + Typewriter = Echoreply ( http://echoreply.us ) ^ permalink raw reply [flat|nested] 8+ messages in thread
[parent not found: <m2n.s.1Me8DV-002Rcc@chiark.greenend.org.uk>]
* Re: Is it possible to access XenStore remotely? [not found] ` <m2n.s.1Me8DV-002Rcc@chiark.greenend.org.uk> @ 2009-08-21 16:41 ` Ian Jackson 0 siblings, 0 replies; 8+ messages in thread From: Ian Jackson @ 2009-08-21 16:41 UTC (permalink / raw) To: weiming Cc: xen-devel@lists.xensource.com, Vincent Hanquez, xen-api@lists.xensource.com weiming writes ("Re: [Xen-devel] Is it possible to access XenStore remotely?"): > Yes, I'm considering adding a TCP socket for xenstored. As Jean says, this is easy but probably unwise. > Since xen apis can be called remotely, there's no reason to prevent > accessing xenstore in the same way. You will need to think about access control. I don't think we will be accepting any patches to implement the more complex access control which will be necessary, so you'll be maintaining a private branch. Ian. ^ permalink raw reply [flat|nested] 8+ messages in thread
end of thread, other threads:[~2009-08-25 6:38 UTC | newest]
Thread overview: 8+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2009-08-20 2:24 Is it possible to access XenStore remotely? weiming
2009-08-20 9:24 ` Vincent Hanquez
2009-08-20 14:00 ` weiming
2009-08-24 13:03 ` Tim Post
[not found] ` <1251118999.5532.84.camel-bi+AKbBUZKY6gyzm1THtWbp2dZbC/Bob@public.gmane.org>
2009-08-24 16:05 ` [Xen-devel] " Ian Jackson
[not found] ` <19090.47695.114710.46450-msK/Ju9w1zmnROeE8kUsYhEHtJm+Wo+I@public.gmane.org>
2009-08-24 16:13 ` Vincent Hanquez
2009-08-25 6:38 ` Tim Post
[not found] ` <m2n.s.1Me8DV-002Rcc@chiark.greenend.org.uk>
2009-08-21 16:41 ` Ian Jackson
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.