| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
| |
query a domain's current and maximum memory reservation. Also,
XENMEM_maximum_ram_page now returns the max_page directly,
rather than writing through a passed-in pointer.
Also, disable PAE in the default config (accidentally checked
in two changesets ago).
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|
|
|
|
|
|
|
| |
is mapped above 2GB.
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
time (instead of at compile time). Allows a single xen.gz binary to
run under different security policy types, which simplifies
distributions considerably. To this end, we replace the current single
compile switch in Config.mk with the following two:
1. ACM_SECURITY (y/n) if "n", then the ACM is not compiled and no security
policies can be configured at boot time. If "y", then the ACM is compiled
and can be configured into any of the available policy types (null,
chwall, ste, chwall_ste) by specifying a valid boot policy .bin file in
the grub boot configuration.
2. ACM_DEFAULT_SECURITY_POLICY (null / chwall / ste / chwall_ste)
specifies the policy into which Xen defaults in the case that security is
enabled but no boot policy file is specified, or the specified policy file
is invalid (wrong version, magic, corrupted, ...)
While the type of the enabled policy (null, ste, ...) is decided once
during boot for the whole boot cycle, the policy instantiation can be
changed during operation as usual with the security tools.
Signed-off by: Tomas Lendacky <toml@us.ibm.com>
Signed-off by: Reiner Sailer <sailer@us.ibm.com>
|
|
|
|
|
|
|
|
|
|
| |
directory (/). This is only overridden automatically
for the 'make dist' targets and their legacy aliases
(make {xen,tools,kernels,docs}).
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|
|
|
|
|
|
|
|
| |
Allows for partial-tree builds to be invoked from a sub-directory.
Allow for users to include a ".config" with additional custom settings.
Signed-off-by: Michal Ostrowski <mostrows@watson.ibm.com>
|
| |
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
static library, and do not install it.
# HG changeset patch
# User josht@us.ibm.com
# Node ID ea025493dfe39540075ee9e4e75b2146f25bdbd3
# Parent ce557cc4fdc764ac2ce07b8d4bcae77ecf847c29
Rename vm-top to xentop. Make "xm top" invoke xentop. Make libxenstat a static library, and do not install it.
|
| |
| |
| |
| | |
configuration variables from Config.mk, rather than disabling them if the needed headers are not found.
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
trampoline when their address is taken, which causes a
fault if the system implements NX/XD.
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* adds a C-based security policy translation tool to Xen (secpol_xml2bin)
and removes the current Java
security policy translator (Java dependencies). The C-based tool
integrates into the Xen source tree build
and install (using gnome libxml2 for XML parsing). See install.txt.
* introduces security labels and related tools. Users can now use
semantic-rich label names to put security-tags
on domains. See example.txt, policy.txt.
* moves the security configuration (currently ACM_USE_SECURITY_POLICY)
from xen/Rules.mk
into a separate top-level Security.mk file (it is needed by the
tools/security and xen/acm).
Both xen/acm and tools/security are built during the Xen build process
only if ACM_USE_SECURITY_POLICY
is not ACM_NULL_POLICY (which is the default setting).
Signed-off-by Reiner Sailer <sailer@us.ibm.com>
Signed-off by Stefan Berger <stefanb@us.ibm.com>
Signed-off by Ray Valdez <rvaldez@us.ibm.com>
|
|
|
|
|
|
|
|
|
| |
xen/tools actually use HOSTCFLAGS (it was already using HOSTCC), and
fixes some gcc-4.0 signedness warnings in xen/tools/symbols.c.
Signed-off-by: Josh Triplett <josht@us.ibm.com>
|
| |
|
| |
|
|
|
|
|
|
| |
by setting XEN_TARGET_X86_PAE=y (e.g., in Config.mk).
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|
|
|
|
| |
This patch allows user to choose mirror to get linux kernel source instead of getting it from kernel.org (which set as default)
|
|
|
|
|
|
|
| |
mk.linux-2.6-xenU, mk.linux-2.6-xen0, Rules.mk, Config.mk:
Move {COMPILE,TARGET}_{,SUB}ARCH} definition into xen/Rules.mk.
Signed-off-by: Christian Limpach <Christian.Limpach@cl.cam.ac.uk>
|
|
|
|
|
|
|
|
|
|
|
|
| |
[PATCH] Install libraries into libdir
Attached makes it so that libxc and libxutil get installed
into /usr/lib64 instead of /usr/lib on x86_64.
Signed-off-by: Jeremy Katz <katzj@redhat.com>
===== Config.mk 1.3 vs edited =====
|
|
|
|
|
|
| |
Makefile fixes. mbootpack dependencies now work properly.
Signed-off-by: Keir Fraser <keir@xensource.com>
|
|
|
|
|
|
| |
Add TARGET_ARCH suffix to defconfig files.
Signed-off-by: Christian Limpach <Christian.Limpach@cl.cam.ac.uk>
|
|
Improved cross-compilation support.
Signed-off-by: Keir Fraser <keir@xensource.com>
|