Xen project Mailing List

Re: [Xen-devel] [PATCH 02/11] hvmctl: convert HVMOP_set_pci_intx_level

To: Jan Beulich <JBeulich@xxxxxxxx>, xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>

From: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>

Date: Mon, 20 Jun 2016 10:32:28 -0400

Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wei.liu2@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, Tim Deegan <tim@xxxxxxx>, Paul Durrant <paul.durrant@xxxxxxxxxx>

Delivery-date: Mon, 20 Jun 2016 14:33:14 +0000

Ironport-phdr: 9a23:+gPZ4xDmtlaH8xpv9cWSUyQJP3N1i/DPJgcQr6AfoPdwSP/4o8bcNUDSrc9gkEXOFd2CrakU2qyH7uu+BiQp2tWojjMrSNR0TRgLiMEbzUQLIfWuLgnFFsPsdDEwB89YVVVorDmROElRH9viNRWJ+iXhpQAbFhi3DwdpPOO9QteU1JTmkbHvsMOMKyxzxxODIppKZC2sqgvQssREyaBDEY0WjiXzn31TZu5NznlpL1/A1zz158O34YIxu38I46Fp34d6XK77Z6U1S6BDRHRjajhtpZ7Wrx2LcS+jrjtZCD1XwVJ0BF3n5ReydJrstirxtqIp+gOXIMn3RrAcQim54uFgTxq+zG8XOjh8/GzJh8g42LJWpletqgJyx6bQYZqJL7xuc6XFZ9QYSGFdGMFLWHoSLJm7at4jBuwAMOIQg4S1iEEHpBX2UQWjCO7g0DZgmm793ap81f8oVw7BwlpzTJo1rH3IoYCtZ+8pWuevwfyNlG+bYg==

List-id: Xen developer discussion <xen-devel.lists.xen.org>

On 06/20/2016 08:53 AM, Jan Beulich wrote:

Note that this adds validation of the "domain" interface structure
field, which previously got ignored.

Note further that this retains the hvmop interface definitions as those
had (wrongly) been exposed to non-tool stack consumers (albeit the
operation wouldn't have succeeded when requested by a domain for
itself).

Signed-off-by: Jan Beulich <jbeulich@xxxxxxxx>
---
TBD: xen/xsm/flask/policy/access_vectors says "also needs hvmctl", but
     I don't see how this has been done so far. With the change here,
     doing two checks in flask_hvm_control() (the generic one always
     and a specific one if needed) would of course be simple, but it's
     unclear how subsequently added sub-ops should then be dealt with
     (which don't have a similar remark).

I am not sure why that remark is there: it seems like it refers to an overall check in the HVM operation hypercall, which does not exist. There is no reason to have an operation protected by two different access checks, so I think that both the previous and patched code are correct and the "also needs hvmctl" comment should be removed. With that, Acked-by: Daniel De Graaf <dgdegra@xxxxxxxxxxxxx> _______________________________________________ Xen-devel mailing list Xen-devel@xxxxxxxxxxxxx http://lists.xen.org/xen-devel

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.