projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d55b4c2) | patch
xsm: add remote_remap permission
authorDaniel De Graaf <dgdegra@tycho.nsa.gov>
Sun, 18 Dec 2011 14:33:19 +0000 (14:33 +0000)
committerDaniel De Graaf <dgdegra@tycho.nsa.gov>
Sun, 18 Dec 2011 14:33:19 +0000 (14:33 +0000)
commit4c1b911bbcd97fb68b4a9e0903a6644e50adda01
treeced092f6dc59142d3362611e9acf117ffc250363tree | snapshot
parentd55b4c2dc629e9460d72c17bb2b0fa2028123199commit | diff
xsm: add remote_remap permission

The mmu_update hypercall can be used to manipulate the page tables of
a remote domain. Add a check for this in the XSM hook in addition to
the existing check on mapping pages of a remote domain.

Signed-off-by: Daniel De Graaf <dgdegra@tycho.nsa.gov>
tools/flask/policy/policy/flask/access_vectors diff | blob | history
xen/arch/x86/mm.c diff | blob | history
xen/include/xsm/xsm.h diff | blob | history
xen/xsm/dummy.c diff | blob | history
xen/xsm/flask/hooks.c diff | blob | history
xen/xsm/flask/include/av_perm_to_string.h diff | blob | history
xen/xsm/flask/include/av_permissions.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.