Reiner Sailer
2005-Jun-20 17:22 UTC
[Xen-devel] [PATCH] sHype access control architecture for Xen
This E-mail contains the sHype access control architecture for inclusion into the Xen hypervisor (xeno-unstable.bk). This is a follow-up on earlier postings: http://lists.xensource.com/archives/html/xen-devel/2005-04/msg00864.html The *_xen.diff patch includes the core sHype access control architecture. Default is the NULL-policy. The *_tools.diff patch includes the necessary additions to the tools directory: a) adding support for an additional VM configuration paramter b) adding basic policy management support into tools/policy The default setting is the NULL policy. After patching in the diff- files, you should see no change in behavior. Please refer to the attached shype4xen_readme.txt file for instructions on how to activate and experiment with sHype. While we have added support for saving and restoring security information when saving and restoring domains, the architecture currently supports save/restore only on the same hypervisor system running the same sHype policy. Future versions will include more flexible support for save/restore/migration. Our group will submit a java-based policy translation tool for sHype to this mailing list today as well. This tool takes as input an XML-based descriptions of user-defined sHype policies and translates them into a binary policy format that can be loaded into sHype. Thanks Reiner Signed-off by: Reiner Sailer <sailer@us.ibm.com> Signed-off by: Stefan Berger <stefanb@us.ibm.com> _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
aq
2005-Jun-21 05:47 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
On 6/21/05, Reiner Sailer <sailer@watson.ibm.com> wrote:> This E-mail contains the sHype access control architecture > for inclusion into the Xen hypervisor (xeno-unstable.bk). > This is a follow-up on earlier postings: > http://lists.xensource.com/archives/html/xen-devel/2005-04/msg00864.html > > The *_xen.diff patch includes the core sHype access control > architecture. Default is the NULL-policy. > > The *_tools.diff patch includes the necessary additions to the > tools directory: > a) adding support for an additional VM configuration paramter > b) adding basic policy management support into tools/policy > > The default setting is the NULL policy. After patching in the diff- > files, you should see no change in behavior. Please refer to the > attached shype4xen_readme.txt file for instructions on how to > activate and experiment with sHype. > > While we have added support for saving and restoring security > information when saving and restoring domains, the architecture > currently supports save/restore only on the same hypervisor system > running the same sHype policy. Future versions will include more > flexible support for save/restore/migration. > > Our group will submit a java-based policy translation tool for sHype to > this mailing list today as well. This tool takes as input an XML-based > descriptions of user-defined sHype policies and translates them into a > binary policy format that can be loaded into sHype.any plan to write the tool in other language, not Java? i guess not many people (include me) are willing to install Java on their system. since python is used in xen, i think it is a good candidate. i will play with the code and give some feedbacks. regards, aq _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Tupshin Harper
2005-Jun-21 06:26 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
aq wrote:>any plan to write the tool in other language, not Java? i guess not >many people (include me) are willing to install Java on their system. > >since python is used in xen, i think it is a good candidate. > >i will play with the code and give some feedbacks. > >regards, >aq >Ensuring that the code compiles cleanly with gcj would eliminate this issue. -Tupshin _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
aq
2005-Jun-21 07:35 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
On 6/21/05, Tupshin Harper <tupshin@tupshin.com> wrote:> aq wrote: > > >any plan to write the tool in other language, not Java? i guess not > >many people (include me) are willing to install Java on their system. > > > >since python is used in xen, i think it is a good candidate. > > > >i will play with the code and give some feedbacks. > > > >regards, > >aq > > > Ensuring that the code compiles cleanly with gcj would eliminate this issue.but we still need java to run the binary code, dont we? regards, aq _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Tupshin Harper
2005-Jun-21 10:56 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
aq wrote:>On 6/21/05, Tupshin Harper <tupshin@tupshin.com> wrote: > > >>aq wrote: >> >> >> >>>any plan to write the tool in other language, not Java? i guess not >>>many people (include me) are willing to install Java on their system. >>> >>>since python is used in xen, i think it is a good candidate. >>> >>>i will play with the code and give some feedbacks. >>> >>>regards, >>>aq >>> >>> >>> >>Ensuring that the code compiles cleanly with gcj would eliminate this issue. >> >> > >but we still need java to run the binary code, dont we? > >regards, >aq > >No. GCJ can make native binaries (even statically linked ones) with no unusual dependencies. -Tupshin _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Mark Williamson
2005-Jun-21 11:26 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
> > Ensuring that the code compiles cleanly with gcj would eliminate this > > issue. > > but we still need java to run the binary code, dont we?The GCJ package can deal with binary Java code - you get: * compiles .java files to .class or to native * compiles .class to native * GIJ interprets .class files that haven''t been natively compiled It''s actually rather impressive! But the binary that was originally mentioned earlier is the sHype policy, right? i.e. not Java, just produced by the tool Cheers, Mark _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Grzegorz Milos
2005-Jun-21 12:11 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
> On 6/21/05, Tupshin Harper <tupshin@tupshin.com> wrote: > > aq wrote: > > >any plan to write the tool in other language, not Java? i guess not > > >many people (include me) are willing to install Java on their system. > > > > > >since python is used in xen, i think it is a good candidate. > > > > > >i will play with the code and give some feedbacks. > > > > > >regards, > > >aq > > > > Ensuring that the code compiles cleanly with gcj would eliminate this > > issue. > > but we still need java to run the binary code, dont we?gjc is supposed to be able to compile Java to native machine code, but I have never used it myself. Assuming that it works you wouldn''t need JRE or SDK. Gregor -- Quidquid latine dictum sit, altum viditur --- Anon _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Scott Parish
2005-Jun-21 12:32 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
On Mon, Jun 20, 2005 at 11:26:08PM -0700, Tupshin Harper wrote:> Ensuring that the code compiles cleanly with gcj would eliminate this issue.Not everyone installs gcj either. sRp -- Scott Parish Signed-off-by: srparish@us.ibm.com _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Alvin Starr
2005-Jun-21 13:25 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
aq wrote:>On 6/21/05, Reiner Sailer <sailer@watson.ibm.com> wrote: > > >>This E-mail contains the sHype access control architecture >>for inclusion into the Xen hypervisor (xeno-unstable.bk). >>This is a follow-up on earlier postings: >>http://lists.xensource.com/archives/html/xen-devel/2005-04/msg00864.html >> >> >>[snip]>any plan to write the tool in other language, not Java? i guess not >many people (include me) are willing to install Java on their system. >Hmmm. I have the same complaint about Python. I tend to like anything that can be compiled into a more or less standalone binary. The current Python tools have a whole chain of dependancies and I often find that this kind of thing ends up leaving me in a situation where I have conflicting dependancies. I just love staicaly compiled binaries or somthing that at most requires the libraries you get with a stock libc install. I have not looked at the sHype tools but it may be that they can be compiled with gcj and turned into a static binary.> >since python is used in xen, i think it is a good candidate. > >i will play with the code and give some feedbacks. > >regards, >aq > >_______________________________________________ >Xen-devel mailing list >Xen-devel@lists.xensource.com >http://lists.xensource.com/xen-devel > >-- Alvin Starr || voice: (416)585-9971 Interlink Connectivity || fax: (416)585-9974 alvin@iplink.net || _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
Ray Valdez
2005-Jun-21 13:49 UTC
Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
On 6/21/05, Tupshin Harper <tupshin@tupshin.com> wrote:> aq wrote: > > >any plan to write the tool in other language, not Java? i guess not > >many people (include me) are willing to install Java on their system. > > > >since python is used in xen, i think it is a good candidate. > > > >i will play with the code and give some feedbacks.> Ensuring that the code compiles cleanly with gcj would eliminate thisissue. We will look into compiling the tool with gcj. Thanks. We will appreciate your feedback.> but we still need java to run the binary code, dont we?No. The tool is used for generating a binary policy file, which can then be loaded into sHype via the xeno-unstable.bk/tools/policy/policy_tool command. Thanks, -Ray _______________________________________________ Xen-devel mailing list Xen-devel@lists.xensource.com http://lists.xensource.com/xen-devel
aq
2005-Jun-21 14:48 UTC
[Xense-devel] Re: [Xen-devel] [PATCH] sHype access control architecture for Xen
On 6/21/05, Ray Valdez <rvaldez@us.ibm.com> wrote:> On 6/21/05, Tupshin Harper <tupshin@tupshin.com> wrote: > > aq wrote: > > > > >any plan to write the tool in other language, not Java? i guess not > > >many people (include me) are willing to install Java on their system. > > > > > >since python is used in xen, i think it is a good candidate. > > > > > >i will play with the code and give some feedbacks. > > > Ensuring that the code compiles cleanly with gcj would eliminate this > issue. > > We will look into compiling the tool with gcj. Thanks. We will appreciate > your feedback. > > > but we still need java to run the binary code, dont we? > > No. The tool is used for generating a binary policy file, which can then be > loaded into sHype via the > xeno-unstable.bk/tools/policy/policy_tool command. >to tell the truth, installing java into any of my machines is the last thing i want to do. if it is possible to compile java code to native binary, that would be great. then java turns out to be even better than python, right ;-) regards, aq _______________________________________________ Xense-devel mailing list Xense-devel@lists.xensource.com http://lists.xensource.com/xense-devel