All of lore.kernel.org
 help / color / mirror / Atom feed
From: Wei Liu <liuw@liuw.name>
To: "Jinesh M.K" <mkjinesh@gmail.com>
Cc: Xen-devel@lists.xensource.com
Subject: Re: Event from dom0
Date: Thu, 18 Aug 2011 18:52:22 +0800	[thread overview]
Message-ID: <CAOsiSVXLf5NFHUrMfr5aUR3jLtPYCAxPmhnMYN-MMWoQOZKSHQ@mail.gmail.com> (raw)
In-Reply-To: <CAKx7_gwDFbOmZpD4AzbvNkrFTR8hx2OAhbgH3YAEW4FyiPmBEg@mail.gmail.com>

On Thu, Aug 18, 2011 at 2:24 PM, Jinesh M.K <mkjinesh@gmail.com> wrote:
> Thank you for your information, I tried the attached code for system call
> interception.
>
>

Well well, I think this technique doesn't fit your scenario -- I
misunderstood your case, I originally thought that you needed to know
what operation is happend inside other domain (and not letting it be
awared of this).

If you trust Dom0 (from a security perspective of view), then syscall
interception is not a good idea, there should be other better method.
Maybe, like Pasi said, inotify?

If you don't trust Dom0, then who is to be trusted? Xen has very
limited capabilities to serve high level needs, eventually,
complicated operations are passed to some guests to handle.

I think it is better to clarify you scenario.

Wei.

      reply	other threads:[~2011-08-18 10:52 UTC|newest]

Thread overview: 7+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2011-08-17  4:52 Event from dom0 Jinesh M.K
2011-08-17  8:51 ` Pasi Kärkkäinen
2011-08-17 11:30   ` Jinesh M.K
2011-08-17 11:42     ` Pasi Kärkkäinen
2011-08-18  1:33 ` Wei Liu
2011-08-18  6:24   ` Jinesh M.K
2011-08-18 10:52     ` Wei Liu [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=CAOsiSVXLf5NFHUrMfr5aUR3jLtPYCAxPmhnMYN-MMWoQOZKSHQ@mail.gmail.com \
    --to=liuw@liuw.name \
    --cc=Xen-devel@lists.xensource.com \
    --cc=mkjinesh@gmail.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.