From mboxrd@z Thu Jan 1 00:00:00 1970 From: Andrii Tseglytskyi Subject: Re: [PATCH v2] domctl: tighten XEN_DOMCTL_*_permission Date: Fri, 15 Aug 2014 15:22:20 +0300 Message-ID: References: <5368FAFD020000780000F610@mail.emea.novell.com> <53EDE2BA.7020307@citrix.com> <53EDF6BF.70106@citrix.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Return-path: Received: from mail6.bemta4.messagelabs.com ([85.158.143.247]) by lists.xen.org with esmtp (Exim 4.72) (envelope-from ) id 1XIGWW-0001Gn-Ed for xen-devel@lists.xenproject.org; Fri, 15 Aug 2014 12:22:24 +0000 Received: by mail-vc0-f181.google.com with SMTP id lf12so2816706vcb.40 for ; Fri, 15 Aug 2014 05:22:20 -0700 (PDT) In-Reply-To: <53EDF6BF.70106@citrix.com> List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Sender: xen-devel-bounces@lists.xen.org Errors-To: xen-devel-bounces@lists.xen.org To: Andrew Cooper Cc: Keir Fraser , Tim Deegan , Ian Jackson , Ian Campbell , Jan Beulich , xen-devel List-Id: xen-devel@lists.xenproject.org Hi Andrew, >> But in current implementation pirq_access_permitted() returns >> 0 if resource is not found. > > Correct, and that is the point. > > If the current domain does not have permissions to use a certain pirq, > it does not have permission to alter the permission of another domain, > with respect to this pirq. Note that by permitting/denying access to a > target domain, the current domain does not loose its existing permissions. > Thank you. This is the answer for my question. Now got it. Regards, Andrii -- Andrii Tseglytskyi | Embedded Dev GlobalLogic www.globallogic.com