From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:52818) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1YQJ6a-0001Un-8S for qemu-devel@nongnu.org; Tue, 24 Feb 2015 12:17:12 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1YQJ6Y-0007Wn-U1 for qemu-devel@nongnu.org; Tue, 24 Feb 2015 12:17:08 -0500 Received: from mx1.redhat.com ([209.132.183.28]:43702) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1YQJ6Y-0007We-LQ for qemu-devel@nongnu.org; Tue, 24 Feb 2015 12:17:06 -0500 Message-ID: <54ECA740.4050701@redhat.com> Date: Tue, 24 Feb 2015 09:30:56 -0700 From: Eric Blake MIME-Version: 1.0 References: <1423711034-5340-1-git-send-email-zhang.zhanghailiang@huawei.com> <1423711034-5340-18-git-send-email-zhang.zhanghailiang@huawei.com> <54E2825B.9040500@redhat.com> <54EC494E.6000901@cn.fujitsu.com> In-Reply-To: <54EC494E.6000901@cn.fujitsu.com> Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="vmKDKT5c7jaNvVCNUClUjm2tnSJkcDNEB" Subject: Re: [Qemu-devel] [PATCH RFC v3 17/27] COLO: Add new command parameter 'colo_nicname' 'colo_script' for net List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: Wen Congyang , zhanghailiang , qemu-devel@nongnu.org Cc: Li Zhijian , yunhong.jiang@intel.com, eddie.dong@intel.com, dgilbert@redhat.com, peter.huangpeng@huawei.com, Gao feng , stefanha@redhat.com, pbonzini@redhat.com This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --vmKDKT5c7jaNvVCNUClUjm2tnSJkcDNEB Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 02/24/2015 02:50 AM, Wen Congyang wrote: >> Script files are in general very hard to secure. Libvirt marks any >> domain that uses a script file for controlling networking as tainted, >> because it cannot guarantee that the script did not do arbitrary >> actions. Can you come up with any better solution that does not requi= re >> a script file, such as having management software responsible for >> passing in an already-opened fd? >=20 > Do you mean that opening the script in libvirt? >=20 No, I mean a solution that needs no script file at all. Have libvirt pre-open the TAP device you will need, then pass in the fd that will be used for the colo NIC. --=20 Eric Blake eblake redhat com +1-919-301-3266 Libvirt virtualization library http://libvirt.org --vmKDKT5c7jaNvVCNUClUjm2tnSJkcDNEB Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Public key at http://people.redhat.com/eblake/eblake.gpg Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBCAAGBQJU7KdAAAoJEKeha0olJ0NqTP0H/3PZZsJCdMucrBaK9TZ6zrkO 2KLLskaSHydBh2l8kifGfszVFIsfV7dR9aLKbbK3HtCbqjpSnL/qh4trbV6jCjLE VJqfmuDdv/jrnNRIxEmGE0Y57Y59hm9Uo7JqmXbgLwd7XYAe7iSiTc2uZlyrlW5T sA2/Hi6yWKe2dARfFRL25OFoiF9Qt4nb1qQLHI+pMB4W1q5Ijep35h6U+zJn8Put cR92DiVwwl0VffVeeg2P65j8UkmLp9rn9K1XpxWT/7HoO3vKKW3DY64pZxHZAkp0 Q4lZ58Z/XCOvrdlGDVpR4gZ/xZvsvWD0T6pmneF6WZpxGRg1feZhd72H1htGxEc= =0tf/ -----END PGP SIGNATURE----- --vmKDKT5c7jaNvVCNUClUjm2tnSJkcDNEB--