]> xenbits.xensource.com Git - people/liuw/stubdom.git/commit
projects / people / liuw / stubdom.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c551049) | patch
stubdom/vtpm: constrain locality by XSM label
authorDaniel De Graaf <dgdegra@tycho.nsa.gov>
Thu, 21 Mar 2013 20:11:27 +0000 (16:11 -0400)
committerIan Campbell <ian.campbell@citrix.com>
Fri, 12 Apr 2013 13:28:17 +0000 (14:28 +0100)
commit7232bfba1f522d1723f410d3a25e6ba9bfee07ce
treeca481a9a4da24da76c92d672d727313ec7088e0btree
parentc551049db128936f0d895e7762a884a7990317b4commit | diff
stubdom/vtpm: constrain locality by XSM label

This adds the ability for a vTPM to constrain what localities a given
client domain can use based on its XSM label. For example:

  locality=user_1:vm_r:domU_t=0,1,2 locality=user_1:vm_r:watcher_t=5

An arbitrary prefix can be matched by using a '*'.

Signed-off-by: Daniel De Graaf <dgdegra@tycho.nsa.gov>
vtpm/vtpm.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.