[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH for-4.15 6/7] CHANGELOG.md: Various entries, mostly xenstore


  • To: George Dunlap <George.Dunlap@xxxxxxxxxx>
  • From: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
  • Date: Thu, 1 Apr 2021 15:16:00 +0100
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=citrix.com; dmarc=pass action=none header.from=citrix.com; dkim=pass header.d=citrix.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lN5z1D6OE0t0qCn/asYOcJEbcsKHwmaA4C8+DhC2aGw=; b=BhEQb/F1A2OaNh/XWsSG+azyKENMKeRMDobkLFjKwAohDxqVAqYHVO5G+CEG6El55tlwHWTbVPS46aLHvHJ37ExbPNvoqzUMVBMdfCkPcIsgwkKJNAEzAhRcycrF1ebh8mS7Hi2fFNXnrvICMy5ymThGPayM0u/KTWyF291fkE5C7xVvim8T7XOMp/3/BmEIo+fPjFXI7Y2ipiSyeZu+QVsh4N8co7VBWTnkYBL2p0en3PU3VFs/lAzdS/J4FijOAJuiRjwM19kIP9DTmcigUB0GoopLVhfECcUa6KPFdCcIS3U18f1xg1saV+xYcLlFfQDyyXP6ILUUBh2vKDhpVg==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fC4lZ+sheUYHanELUSClfLLk+/hQQrPWoPFDngBIvA+5qNXAA48Rf7UIVz21XtOaF+l8cTrwldtKqDmf6JE4zYf7Vjd6nAKJ9QoMaI4LJTWq3ZGACNdxVv8GRiglSGRTXOxZ/0Jt8LVdZfR07M0m6LCJ1euRWnIjYFyrQPSqwbclYwRNeC41bqLjiaknuUzhHW8ypQ5fpDWI/8LWmxlW7P6+WGXJQpwKOYrimSDjQSIYNY9+cnppq6leE6lf0Lv8W2IRShkFKBoQCfyTCZ9YCivVzhqOyXGtEohhHzP7S3TTHUZABGNien0aPdRqOIzmB609iEtnB/FXsKwqsbVmjg==
  • Authentication-results: esa3.hc3370-68.iphmx.com; dkim=pass (signature verified) header.i=@citrix.onmicrosoft.com
  • Cc: xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxx>
  • Delivery-date: Thu, 01 Apr 2021 14:16:20 +0000
  • Ironport-hdrordr: A9a23:CdjIK6scf2I5RdIYMK4iOAD/7skCWIYji2hD6mlwRA09T+WxrO rrtOgH1BPylTYaUGwhn9fFA6WbXXbA7/dOjrU5FYyJGC3ronGhIo0n14vtxDX8Bzbzn9Qw6Y 5JSII7MtH5CDFB4PrSyAOzH888hPyO9661jenTpk0dNz1CQYsI1XYaNi+wFEpqSA5aQb8wE5 SB7sRKzgDQBEg/RMK9G3UDQqz/t8TG/aiWLCIuKhY75GC1/FWVwZHgFRzw5HcjehNJhYwv6G 3U1zH+j5/TyM2T7j/5+yvt449NmN3no+EzSPCkrsQOMD3jhkKJSe1aKsS/lQs4qu2u91om+e Oky3xLUaVOwkjccW2vrRzm1xOI6kdX11bYxUKFmnymmMTlRVsBeo58rLhEeRjU4VdIhqAY7I t33nmUv5cSLRTMkDWV3amuazhWl1G5qXdnrOgLj3Y3a/p7VJZtq+UkjSBoOaZFOBi/xJEsEe FoAs2Zzu1Ra0mmY3fQuXQq6MCwX1wody32DXQqi4iw6Xx7jXp5x0wXyIg0hXEb7q8wTJFC+q DtLrlorrdTVcUbBJgNStspcI+SMCjgUBjMOGWdLRDMD6ccIU/ArJbx/fET6Py1focLiL8/go 7IXl8dlWNaQTOuNeS+mLlwtjzdSmS0WjrgjutE4YJih7H6TL33dSKZTlQjlNahvuUfDsXXV+ 3bAuMUP9bTaU/VXapZ1Qz3XJdfbVMEVtcOh9o9U1WS5sLHQ7ea9NDzQbL2Hv7AADwkUmTwDj 8oRz7oPvhN6UitRzv/mxjeW3Tkf0Tl5pJuGK3G/+weobJ9drFkg0wwsxCU98uLITpNvugKZ0 N4Oqrgib7+j3Kx53z042JgPQd9Ak5Z7K77aW5DoRYHPirPAPM+kuTaXVoX/XOcYjdjUsvdEW dk1ihK0JPyC6bV+AcPJJaMNHmAg34auXSQJq1s5ZGr1IPCYZM3DpEvRaprMx7EfiYF3jpCoH tfaQMCW0/UHi7vj6Lgl5APGOTDbbBH8XmWCN8RpnTFuUqGo8YzAnMdQj61SMaSxR0jXjxOmz RKguQiqavFnTakMm0khuskdFVKdWSMGbpDZT71Lbl8i/TueAtqS32NiiHfgxYvenDy/0FXgm D6NyWbdbXKBVVa00oomprC4Rdxdm+HeVh3ZW0/uYphFX7esnI2yPSVfMOIoh+sQ0pHxvtYPC DOYDMULA8rz9er1ASNkDLHEXk93J0hMuHUEbxLScCY5lq9bImT0a0WFf5d+5hocMrjteIGSu qTcQ6YJjGQMZJe5yWF4nI+fCVkongtlv3lnAD/5G+jxXglHL7cJk9lS7xzGaDo00H0A/KTlJ N3gtI+sbHubiH/atuaxbrWaDAGIBXJumKyR/wpr5cRva9ajsoBI7DLFT/TkHdA11EiKc2xkk UUSqFy+qrANY9iZNZ6QVMvwnM50NCUaFI2uQn3CPIkdV4jj3XHL8qEioC42YYHEwmEvk/sIl GR/C1W4ufdUyaC3bAcDbgsIW4+UjlP1F1yuOWYd4PRDw22d+ZMuFqiW0XNAYNgdA==
  • Ironport-sdr: H4ExOqUTVgzKHJLmVWNYKa/9p/bIuv+Gi3OiRFppPL79J+YqAm9E6kvHdWnEMJY835w2HitBKp BSWWf8saC2ZGtFSUPyZLGgftc4ktqrS8VSrJnki2/I2x31EhMhIgswAqARQbOg5ftB9wbgAMfI ZjUU/IsEyo7yk+o/7z3plmqYVmu48ZUllZQFR/d37nB4+d+AbDrh7E4IVQqNAKYub0ntlbVuBx RWvqCy2pFylPQhMUbvSs7tvpXfdidrib12G0aR0vEv4HaimssTSVAALa7sWe9ul19IpRyvrk6l shY=
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 01/04/2021 15:13, George Dunlap wrote:
>
>> On Apr 1, 2021, at 3:00 PM, Andrew Cooper <andrew.cooper3@xxxxxxxxxx> wrote:
>>
>> On 01/04/2021 14:38, George Dunlap wrote:
>>> ...grouped by submitters / maintainers
>>>
>>> Signed-off-by: George Dunlap <george.dunlap@xxxxxxxxxx>
>>> ---
>>> CC: Juergen Gross <jgross@xxxxxxxx>
>>> CC: Jan Beulich <jbeulich@xxxxxxxx>
>>> CC: Ian Jackson <ian.jackson@xxxxxxxxxx>
>>> ---
>>> CHANGELOG.md | 3 +++
>>> 1 file changed, 3 insertions(+)
>>>
>>> diff --git a/CHANGELOG.md b/CHANGELOG.md
>>> index 2f26cd5c87..9c272a0113 100644
>>> --- a/CHANGELOG.md
>>> +++ b/CHANGELOG.md
>>> @@ -28,8 +28,11 @@ The format is based on [Keep a 
>>> Changelog](https://keepachangelog.com/en/1.0.0/)
>>>  - Factored out HVM-specific shadow code, improving code clarity and 
>>> reducing the size of PV-only hypervisor builds
>>>  - Added XEN_SCRIPT_DIR configuration option to specify location for Xen 
>>> scripts, rather than hard-coding /etc/xen/scripts
>>>  - xennet: Documented a way for the backend (or toolstack) to specify MTU 
>>> to the frontend
>>> + - Fix permissions for watches on @introduceDomain and @releaseDomain: By 
>>> default, only privileged domains can set watches; but specific domains can 
>>> be given permission in order to allow disaggregation.
>> This is XSA-115, and isn't something new in 4.15 vs 4.14.  (I think?)
> XSA-115 went public during the 4.15 development window.
>
> So on the one hand, it’s certainly effort that happened during the window, 
> which it would be good to highlight.   On the other hand, it was backported 
> to all security supported trees (?), so it’s not something you need to update 
> to 4.15 to get.
>
> Honestly not sure the best thing to suggest here.

We either want all XSAs discussed, or none of them.  Possibly as simple
as "the following XSAs {...} where developed and released" ?

I recall Lars making this part of the release notes in the past.

>
>>> + - xenstore can now be live-updated on a running system.
>> This needs to be very clear that it is tech preview.  It does not
>> currently work cleanly if a malicious VM deliberately holds a
>> transaction open.
> OK, I’ll add (tech preview) at the end.

SGTM.

~Andrew



 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.