projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4def0d9) | patch
xsm: Dynamic update to device ocontexts
authorKeir Fraser <keir.fraser@citrix.com>
Fri, 13 Nov 2009 22:00:19 +0000 (22:00 +0000)
committerKeir Fraser <keir.fraser@citrix.com>
Fri, 13 Nov 2009 22:00:19 +0000 (22:00 +0000)
commit3695303ba1539e57e5d8bdf4ee7ba1bc6e3edc81
tree44cd05b2caf235afa0fd9bbaf71d1897d53efb13tree | snapshot
parent4def0d9ca1ab8a1fdf4300f87118068e46e6491fcommit | diff
xsm: Dynamic update to device ocontexts

Added the ability to add and delete ocontexts dynamically on a running
system.  Two new commands have been added to the xsm hypercall, add
and delete ocontext.  Twelve new library functions have been
implemented that use the hypercall commands to label and unlabel
pirqs, PCI devices, I/O ports and memory.  The base policy has been
updated so dom0 has the ability to use the hypercall commands by
default.  Items added to the list will not be present next time the
system reloads.  They will need to be added to the static policy.

Signed-off-by : George Coker <gscoker@alpha.ncsc.mil>
Signed-off-by : Paul Nuzzi <pjnuzzi@tycho.ncsc.mil>
tools/flask/libflask/flask_op.c diff | blob | history
tools/flask/libflask/include/flask.h diff | blob | history
tools/flask/policy/policy/flask/access_vectors diff | blob | history
tools/flask/policy/policy/modules/xen/xen.te diff | blob | history
xen/include/public/xsm/flask_op.h diff | blob | history
xen/xsm/flask/flask_op.c diff | blob | history
xen/xsm/flask/include/av_perm_to_string.h diff | blob | history
xen/xsm/flask/include/av_permissions.h diff | blob | history
xen/xsm/flask/include/security.h diff | blob | history
xen/xsm/flask/ss/services.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.