External/libvirt
1
0
Fork 0
mirror of https://gitlab.com/libvirt/libvirt.git synced 2024-10-20 04:59:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
Libvirt provides a portable, long term stable C API for managing the virtualization technologies provided by many operating systems. It includes support for QEMU, KVM, Xen, LXC, bhyve, Virtuozzo, VMware vCenter and ESX, VMware Desktop, Hyper-V, VirtualBox and the POWER Hypervisor.
7,075 Commits 67 Branches 623 Tags 823 MiB
C 94.8%
Python 2%
Meson 0.9%
Shell 0.8%
Dockerfile 0.7%
Other 0.7%
ebfb8c4243
Go to file
Daniel P. Berrange ebfb8c4243 Add call to sanlock_restrict() in QEMU lock driver 
In between fork and exec, a connection to sanlock is acquired
and the socket file descriptor is intionally leaked to the
child process. sanlock watches this FD for POLL_HANGUP to
detect when QEMU has exited. We don't want a rogus/compromised
QEMU from issuing sanlock RPC calls on the leaked FD though,
since that could be used to DOS other guests. By calling
sanlock_restrict() on the socket before exec() we can lock
it down.

* configure.ac: Check for sanlock_restrict API
* src/locking/domain_lock.c: Restrict lock acquired in
  process startup phase
* src/locking/lock_driver.h: Add VIR_LOCK_MANAGER_ACQUIRE_RESTRICT
* src/locking/lock_driver_sanlock.c: Add call to sanlock_restrict
  when requested by VIR_LOCK_MANAGER_ACQUIRE_RESTRICT flag
2011-06-02 17:23:44 +01:00
.gnulib@9d196fad05
daemon remote generator: Handle some virTypedParameterPtr using functions 2011-06-01 17:38:39 +02:00
docs build: fix VPATH build break from previous patch 2011-06-02 08:18:26 -06:00
examples Introduce a new event emitted when a virtualization failure occurs 2011-05-29 20:21:53 +08:00
include
m4
po Add a plugin for the 'sanlock' project 2011-06-02 10:54:01 +01:00
python
src Add call to sanlock_restrict() in QEMU lock driver 2011-06-02 17:23:44 +01:00
tests Support leases in guest XML and lock manager 2011-06-02 10:54:00 +01:00
tools
.dir-locals.el
.gitignore * .gitignore: Exempt a new test binary. 2011-05-31 11:35:32 -06:00
.gitmodules
.mailmap
AUTHORS
autobuild.sh
autogen.sh
bootstrap build: update to latest gnulib 2011-05-18 08:31:33 -06:00
bootstrap.conf
cfg.mk
ChangeLog-old
configure.ac
COPYING.LIB
HACKING maint: rename virBufferVSprintf to virBufferAsprintf 2011-05-05 13:47:40 -06:00
libvirt.pc.in
libvirt.spec.in
Makefile.am
Makefile.nonreentrant
mingw32-libvirt.spec.in Remove iohelper on Win32 since it is not required 2011-03-31 17:41:51 +01:00
README
README-hacking maint: relax git minimum version 2010-02-24 14:29:27 -05:00
TODO

README 

         LibVirt : simple API for virtualization

  Libvirt is a C toolkit to interact with the virtualization capabilities
of recent versions of Linux (and other OSes). It is free software
available under the GNU Lesser General Public License. Virtualization of
the Linux Operating System means the ability to run multiple instances of
Operating Systems concurrently on a single hardware system where the basic
resources are driven by a Linux instance. The library aim at providing
long term stable C API initially for the Xen paravirtualization but
should be able to integrate other virtualization mechanisms if needed.

Daniel Veillard <veillard@redhat.com>