projects / xen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f5b9cd0) | patch
This patch:
authorkaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
Fri, 19 Aug 2005 09:03:17 +0000 (09:03 +0000)
committerkaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
Fri, 19 Aug 2005 09:03:17 +0000 (09:03 +0000)
commit39ec3e6c6ac6362f6245292701da08e7a055e686
treeed68a7fc7c229db870558a4c1bdb34e8053249fbtree | snapshot
parentf5b9cd087fa4774a162d27071d81a3ffad71190ecommit | diff
This patch:

* adds a C-based security policy translation tool to Xen (secpol_xml2bin)
and removes the current Java
security policy translator (Java dependencies).  The C-based tool
integrates into the Xen source tree build
and install (using gnome libxml2 for XML parsing). See install.txt.

* introduces security labels and related tools. Users can now use
semantic-rich label names to put security-tags
on domains. See example.txt, policy.txt.

* moves the security configuration (currently ACM_USE_SECURITY_POLICY)
from xen/Rules.mk
into a separate top-level Security.mk file  (it is needed by the
tools/security and xen/acm).

Both xen/acm and tools/security are built during the Xen build process
only if ACM_USE_SECURITY_POLICY
is not ACM_NULL_POLICY (which is the default setting).

Signed-off-by Reiner Sailer <sailer@us.ibm.com>
Signed-off by Stefan Berger <stefanb@us.ibm.com>
Signed-off by Ray Valdez <rvaldez@us.ibm.com>
35 files changed:
Config.mk diff | blob | history
docs/misc/shype4xen_readme.txt [deleted file] blob | history
tools/misc/policyprocessor/Makefile [deleted file] blob | history
tools/misc/policyprocessor/SecurityLabel.java [deleted file] blob | history
tools/misc/policyprocessor/SecurityPolicySpec.xsd [deleted file] blob | history
tools/misc/policyprocessor/SsidsEntry.java [deleted file] blob | history
tools/misc/policyprocessor/XmlToBin.java [deleted file] blob | history
tools/misc/policyprocessor/XmlToBinInterface.java [deleted file] blob | history
tools/misc/policyprocessor/c2j_include.c [deleted file] blob | history
tools/misc/policyprocessor/myHandler.java [deleted file] blob | history
tools/misc/policyprocessor/readme.install [deleted file] blob | history
tools/misc/policyprocessor/readme.xen [deleted file] blob | history
tools/misc/policyprocessor/xen_sample_def.xml [deleted file] blob | history
tools/misc/policyprocessor/xen_sample_policy.xml [deleted file] blob | history
tools/security/Makefile diff | blob | history
tools/security/example.txt [new file with mode: 0644] blob
tools/security/install.txt [new file with mode: 0644] blob
tools/security/policies/chwall/chwall-security_label_template.xml [new file with mode: 0644] blob
tools/security/policies/chwall/chwall-security_policy.xml [new file with mode: 0644] blob
tools/security/policies/chwall_ste/chwall_ste-security_label_template.xml [new file with mode: 0644] blob
tools/security/policies/chwall_ste/chwall_ste-security_policy.xml [new file with mode: 0644] blob
tools/security/policies/null/null-security_label_template.xml [new file with mode: 0644] blob
tools/security/policies/null/null-security_policy.xml [new file with mode: 0644] blob
tools/security/policies/security_policy.xsd [new file with mode: 0644] blob
tools/security/policies/ste/ste-security_label_template.xml [new file with mode: 0644] blob
tools/security/policies/ste/ste-security_policy.xml [new file with mode: 0644] blob
tools/security/policy.txt [new file with mode: 0644] blob
tools/security/readme.txt [new file with mode: 0644] blob
tools/security/secpol_compat.h [new file with mode: 0644] blob
tools/security/secpol_tool.c diff | blob | history
tools/security/secpol_xml2bin.c [new file with mode: 0644] blob
tools/security/secpol_xml2bin.h [new file with mode: 0644] blob
tools/security/setlabel.sh [new file with mode: 0644] blob
tools/security/updategrub.sh [new file with mode: 0644] blob
xen/Rules.mk diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.