projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: aa00660) | patch
stubdom/vtpm: constrain locality by XSM label
authorDaniel De Graaf <dgdegra@tycho.nsa.gov>
Thu, 21 Mar 2013 20:11:27 +0000 (16:11 -0400)
committerIan Campbell <ian.campbell@citrix.com>
Fri, 12 Apr 2013 13:28:17 +0000 (14:28 +0100)
commit4eea1da06217cf5b8ea83387b79dcc6f332354fb
treedb5ceaeed9a6970ed5abbae1c89bee4131111bddtree | snapshot
parentaa00660201c8e8b1079298f0f865e72724d34f67commit | diff
stubdom/vtpm: constrain locality by XSM label

This adds the ability for a vTPM to constrain what localities a given
client domain can use based on its XSM label. For example:

  locality=user_1:vm_r:domU_t=0,1,2 locality=user_1:vm_r:watcher_t=5

An arbitrary prefix can be matched by using a '*'.

Signed-off-by: Daniel De Graaf <dgdegra@tycho.nsa.gov>
stubdom/vtpm/vtpm.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.