[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests

To: Sergey Dyasli <sergey.dyasli@xxxxxxxxxx>
From: Julien Grall <julien@xxxxxxx>
Date: Wed, 22 Jan 2020 11:25:56 +0000
Cc: Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, George Dunlap <George.Dunlap@xxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Doug Goldstein <cardoe@xxxxxxxxxx>, xen-devel@xxxxxxxxxxxxx, Daniel De Graaf <dgdegra@xxxxxxxxxxxxx>, Ian Jackson <ian.jackson@xxxxxxxxxxxxx>
Delivery-date: Wed, 22 Jan 2020 11:26:09 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>



On 22/01/2020 11:19, Sergey Dyasli wrote:

On 22/01/2020 10:14, Julien Grall wrote:



On 22/01/2020 10:01, Sergey Dyasli wrote:

On 20/01/2020 10:01, Jan Beulich wrote:

On 17.01.2020 17:44, Sergey Dyasli wrote:

v2 --> v3:
- Remove hvmloader filtering


Why? Seeing the prior discussion, how about adding XENVER_denied to
return the "denied" string, allowing components which want to filter
to know exactly what to look for? And then re-add the filtering you
had? (The help text of the config option should then perhaps be
extended to make very clear that the chosen string should not match
anything that could potentially be returned by any of the XENVER_
sub-ops.)


I had the following reasoning:

1. Most real-world users would set CONFIG_XSM_DENIED_STRING="" anyway.

2. Filtering in DMI tables is not a complete solution, since denied
string leaks elsewhere through the hypercall (PV guests, sysfs, driver
logs) as Andrew has pointed out in the previous discussion.

On the other hand, SMBios filtering slightly improves the situation for
HVM domains, so I can return it if maintainers find it worthy.


While I am not a maintainer of this code, my concern is you impose the conversion from "denied" to 
"" to all the users (include those who wants to keep "denied").


This is not what's happening here: the default is still "<denied>" (as
per patch 1); but patch 2 makes XENVER_extraversion, XENVER_compile_info
and XENVER_changeset to return "<denied>" instead of the real values
which causes the UI / logs issues.

I was referring the SMBios filtering... I don't think doing a blankfiltering is the right thing to do in the hvmloader for the reasonexplained above.

Regarding CONFIG_XSM_DENIED_STRING, I think this is a good step as itallows the vendor to configure it.


Cheers,

--
Julien Grall

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Sergey Dyasli

References:
- [Xen-devel] [PATCH v3 1/2] xsm: add config option for denied string
  - From: Sergey Dyasli
- [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Sergey Dyasli
- Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Jan Beulich
- Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Sergey Dyasli
- Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Julien Grall
- Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
  - From: Sergey Dyasli

Prev by Date: Re: [Xen-devel] [PATCH 3/3] x86 / vmx: use a 'normal' domheap page for APIC_DEFAULT_PHYS_BASE
Next by Date: Re: [Xen-devel] [PATCH v3 2/9] xen: split parameter related definitions in own header file
Previous by thread: Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
Next by thread: Re: [Xen-devel] [PATCH v3 2/2] xsm: hide detailed Xen version from unprivileged guests
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.