xenbits.xensource.com Git - people/liuw/libxenctrl-split/libvirt.git/commit

]> xenbits.xensource.com Git - people/liuw/libxenctrl-split/libvirt.git/commit

projects / people / liuw / libxenctrl-split / libvirt.git / commit

author	Daniel P. Berrange <berrange@redhat.com>
	Mon, 29 Apr 2013 09:56:03 +0000 (10:56 +0100)
committer	Daniel P. Berrange <berrange@redhat.com>
	Wed, 8 May 2013 09:47:47 +0000 (10:47 +0100)
commit	03a600368ea6aeed9bd6d7879597e2bf8533ebc9
tree	0852a49df287867b946e679f13235b873ab8afc3	tree
parent	142e6e27840c9717da8e7a49ddf58303d8e07d60	commit \| diff

Don't allow renaming of domains by the backdoor

Several APIs allow for custom XML to be passed in. This is
checked for ABI stability, which will ensure the UUID is
not being changed. There isn't validation that the name
did not change though. This could allow renaming of guests
via the backdoor, which in turn could allow for bypassing
access control restrictions based on names.

Signed-off-by: Daniel P. Berrange <berrange@redhat.com>

src/conf/domain_conf.c		diff \| blob \| blame \| history
src/qemu/qemu_migration.c		diff \| blob \| blame \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom