2010/10/11 Harsh Prateek Bora <harsh@xxxxxxxxxxxxxxxxxx>: > This patch introduces new attribute to filesystem element > to support customizable security for mount type. > Valid mount_security are: passthrough and mapped. > > Usage: >    Â<filesystem type='mount' mount_security='passthrough'> >    Â<source dir='/export/to/guest'/> >    Â<target dir='mount_tag'/> >    Â</filesystem> > > Here is the detailed explanation on these security models: > > Security model: mapped > ---------------------- > > Fileserver intercepts and maps all the file object create requests. > Files on the fileserver will be created with Fileserver's user credentials > and the > client-user's credentials are stored in extended attributes. > During getattr() server extracts the client-user's credentials from extended > attributes and sends to the client. > > This adds a great deal of security in the cloud environments where the > guest's(client) user space is kept completely isolated from host's user > space. > > > Security model : passthrough > ---------------------------- > > In this security model, Fileserver passes down all requests to the > underlying filesystem. File system objects on the fileserver will be created > with client-user's credentials. This is done by setting setuid()/setgid() > during creation or chmod/chown after file creation. At the end of create > protocol > request, files on the fileserver will be owned by cleint-user's uid/gid. > This model mimic's current NFSv3 level of security. > > Note: This patch is based on Daniel's patch to support 9pfs. > It shall be applied after applying Daniel's patch to support 9pfs. > > v3: > - QEMU cmdline still uses security_model, changes done by mistake reverted. > > Signed-off-by: Harsh Prateek Bora <harsh@xxxxxxxxxxxxxxxxxx> > --- > Âdocs/schemas/domain.rng |  Â6 ++++++ > Âsrc/conf/domain_conf.c Â|  29 +++++++++++++++++++++++++++-- > Âsrc/conf/domain_conf.h Â|  10 ++++++++++ > Âsrc/qemu/qemu_conf.c  Â|  Â9 +++++++-- > Â4 files changed, 50 insertions(+), 4 deletions(-) > This patch lacks documentation about the new domain XML attributes in docs/formatdomain.html.in. Matthias -- libvir-list mailing list libvir-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvir-list