virtio-9p: Security model for create/open2

In the mapped security model, VirtFS server intercepts and maps the file object create and get/set attribute requests. Files on the fileserver will be created with VirtFS servers (QEMU) user credentials and the client-users credentials are stored in extended attributes. On the request to get attributes, server extracts the client-users credentials from extended attributes and sends them to the client. On Host/Fileserver: -rw-------. 2 virfsuid virtfsgid 0 2010-05-11 09:19 afile On Guest/Client: -rw-r--r-- 2 guestuser guestuser 0 2010-05-11 12:19 afile Signed-off-by: Venkateswararao Jujjuri <jvrao@linux.vnet.ibm.com> Signed-off-by: Anthony Liguori <aliguori@us.ibm.com>
author: Venkateswararao Jujjuri (JV) <jvrao@linux.vnet.ibm.com> 2010-06-14 13:34:45 -0700
committer: Anthony Liguori <aliguori@us.ibm.com> 2010-06-22 15:15:50 -0500
commit: 4750a96f6baf8949cc04a0c5b7167606544a4401 (patch)
tree: 59dfed5f2adfb3fb546c078119629e3eca599d82 /hw/file-op-9p.h
parent: 1237ad7607aae5859067831e36a59d3b017c5a54 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/hw/file-op-9p.h b/hw/file-op-9p.h
index a53cd35094..b345189336 100644
--- a/hw/file-op-9p.h
+++ b/hw/file-op-9p.h
@@ -62,7 +62,7 @@ typedef struct FileOperations
     int (*closedir)(FsContext *, DIR *);
     DIR *(*opendir)(FsContext *, const char *);
     int (*open)(FsContext *, const char *, int);
-    int (*open2)(FsContext *, const char *, int, mode_t);
+    int (*open2)(FsContext *, const char *, int, FsCred *);
     void (*rewinddir)(FsContext *, DIR *);
     off_t (*telldir)(FsContext *, DIR *);
     struct dirent *(*readdir)(FsContext *, DIR *);
author	Venkateswararao Jujjuri (JV) <jvrao@linux.vnet.ibm.com>	2010-06-14 13:34:45 -0700
committer	Anthony Liguori <aliguori@us.ibm.com>	2010-06-22 15:15:50 -0500
commit	4750a96f6baf8949cc04a0c5b7167606544a4401 (patch)
tree	59dfed5f2adfb3fb546c078119629e3eca599d82 /hw/file-op-9p.h
parent	1237ad7607aae5859067831e36a59d3b017c5a54 (diff)