[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Xen-devel] [PATCH 1/6] Flask: Support for ARM xentrace

To: <xen-devel@xxxxxxxxxxxxxxxxxxxx>
From: Benjamin Sanda <ben.sanda@xxxxxxxxxxxxxxx>
Date: Wed, 16 Mar 2016 13:51:34 -0700
Cc: Keir Fraser <keir@xxxxxxx>, bensanda <ben.sanda@xxxxxxxxxxxxxxx>, Tim Deegan <tim@xxxxxxx>, Dario Faggioli <dario.faggioli@xxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Paul Sujkov <psujkov@xxxxxxxxx>
Delivery-date: Wed, 16 Mar 2016 20:52:13 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

From: bensanda <ben.sanda@xxxxxxxxxxxxxxx>

Modified to provide support for xentrace on the ARM platform. Added flask 
credential to allow dom0 dom_xen mapping and write access for trace buffers.

Signed-off-by: Benjamin Sanda <ben.sanda@xxxxxxxxxxxxxxx>
---
 tools/flask/policy/policy/modules/xen/xen.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/tools/flask/policy/policy/modules/xen/xen.te 
b/tools/flask/policy/policy/modules/xen/xen.te
index d35ae22..41d276a 100644
--- a/tools/flask/policy/policy/modules/xen/xen.te
+++ b/tools/flask/policy/policy/modules/xen/xen.te
@@ -90,6 +90,8 @@ allow dom0_t dom0_t:domain2 {
 };
 allow dom0_t dom0_t:resource { add remove };
 
+allow dom0_t domxen_t:mmu { memorymap map_write };
+
 # These permissions allow using the FLASK security server to compute access
 # checks locally, which could be used by a domain or service (such as xenstore)
 # that does not have its own security server to make access decisions based on
-- 
2.7.2


_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 1/6] Flask: Support for ARM xentrace
  - From: Konrad Rzeszutek Wilk
- Re: [Xen-devel] [PATCH 1/6] Flask: Support for ARM xentrace
  - From: Julien Grall
- Re: [Xen-devel] [PATCH 1/6] Flask: Support for ARM xentrace
  - From: Julien Grall

References:
- [Xen-devel] [PATCH 0/6] xentrace/xenalyze support on ARM
  - From: Benjamin Sanda

Prev by Date: Re: [Xen-devel] [PATCH v9]xen: sched: convert RTDS from time to event driven model
Next by Date: [Xen-devel] [PATCH 2/6] xenalyze: Support for ARM platform
Previous by thread: [Xen-devel] [PATCH 0/6] xentrace/xenalyze support on ARM
Next by thread: Re: [Xen-devel] [PATCH 1/6] Flask: Support for ARM xentrace
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.