[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[PATCH v3 0/2] Adds starting the idle domain privileged


  • To: xen-devel@xxxxxxxxxxxxxxxxxxxx
  • From: "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>
  • Date: Fri, 22 Apr 2022 12:34:56 -0400
  • Arc-authentication-results: i=1; mx.zohomail.com; dkim=pass header.i=apertussolutions.com; spf=pass smtp.mailfrom=dpsmith@xxxxxxxxxxxxxxxxxxxx; dmarc=pass header.from=<dpsmith@xxxxxxxxxxxxxxxxxxxx>
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1650645307; h=Content-Transfer-Encoding:Cc:Date:From:MIME-Version:Message-ID:Subject:To; bh=JmUJd8m1+kH1LBV6rKljJnSt9maxgAY7fiPqIijmhQs=; b=mvjiPdtyYITCcPzEvApk65R1T9Wg3FiapdmwzGsK/HDKiQkYzBfJH0mwUO4i/4xySZuWCxFGo42IiOVzf6m27Wt5OwvNz7quPOrqiDtwjjmZtmDc4JrYGXtGvnmH4QC+Rk29e14l6JiuJ6p5uLZT54bmsiiG/MBMd/n7T+UGbdY=
  • Arc-seal: i=1; a=rsa-sha256; t=1650645307; cv=none; d=zohomail.com; s=zohoarc; b=bK8uyusoRSJV5H320EKGuHoz8gIx0Fd7V/1YuPBcZAhiPz3GDzQqpvFeFNwMmG5bCvAX5vGlOeL5I7Emiuxjn/uDQSl94pxwAL7LKPgO9biWgyHjEnK8UUyJz3+eI6I5+uSzobrgsSvnQAAqlM1hKjpz/7lxVbxPDd/Kcp1H2NA=
  • Cc: "Daniel P. Smith" <dpsmith@xxxxxxxxxxxxxxxxxxxx>, scott.davis@xxxxxxxxxx, jandryuk@xxxxxxxxx
  • Delivery-date: Fri, 22 Apr 2022 16:35:23 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

This series makes it so that the idle domain is started privileged under the
default policy, which the SILO policy inherits, and under the flask policy. It
then introduces a new one-way XSM hook, xsm_transition_running, that is hooked
by an XSM policy to transition the idle domain to its running privilege level.

Changes in v3:
- renamed *_transition_running() to *_set_system_active()
- changed the XSM hook set_system_active() from void to int return
- added ASSERT check for the expected privilege level each XSM policy expected
- replaced a check against is_privileged in each arch with checking the return
  value from the call to xsm_set_system_active()

Changes in v2:
- renamed flask_domain_runtime_security() to flask_transition_running()
- added the missed assignment of self_sid

Daniel P. Smith (2):
  xsm: create idle domain privileged and demote after setup
  flask: implement xsm_set_system_active

 tools/flask/policy/modules/xen.if      |  6 ++++++
 tools/flask/policy/modules/xen.te      |  1 +
 tools/flask/policy/policy/initial_sids |  1 +
 xen/arch/arm/setup.c                   |  3 +++
 xen/arch/x86/setup.c                   |  3 +++
 xen/common/sched/core.c                |  7 ++++++-
 xen/include/xsm/dummy.h                | 17 +++++++++++++++
 xen/include/xsm/xsm.h                  |  6 ++++++
 xen/xsm/dummy.c                        |  1 +
 xen/xsm/flask/hooks.c                  | 29 +++++++++++++++++++++++++-
 xen/xsm/flask/policy/initial_sids      |  1 +
 11 files changed, 73 insertions(+), 2 deletions(-)

-- 
2.20.1




 


Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.