Actually I did that, but the policy is not loaded at all. 'xl list -Z' show no lable on guests. It seems like that the option 'xsm=xen-policy-4.6.0' is ingnored during booting. (the policy file is moved to the same directory as xen.cfg)
2016-05-16 21:43 GMT+08:00 Konrad Rzeszutek Wilk <konrad.w...@oracle.com>: > On Mon, May 16, 2016 at 10:43:49AM +0100, Andrew Cooper wrote: > > On 16/05/16 09:54, Big Strong wrote: > > > Problem solved by booting xen with grub instead of efi. The deep > > > reason is unknown. > > > > Ah - that is very useful to know, and now obvious. EFI has no concept > > of modules, which probably means the XSM policy doesn't get loaded. > > It does. You just add in xen.cfg: > [konrad@x230 efi]$ more xen.cfg > [global] > default=xtt > > [xtt] > options=console=com1,vga com1=115200,8n1 loglvl=all guest_loglvl=all > kernel=vmlinuz console=hvc0 > ramdisk=initramfs.cpio.gz > xsm=xenpolicy > > The 'xsm' attribute. > ? > > > > FWIW, there is a plan to change how XSM policies are done in the future, > > by embedding the policy at build time. > > > > ~Andrew > > > _______________________________________________ > > Xen-devel mailing list > > Xen-devel@lists.xen.org > > http://lists.xen.org/xen-devel > >
_______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org http://lists.xen.org/xen-devel
